In April 2021, Indian brokerage firm Upstox suffered a data breach. The incident exposed extensive personal information on over 100k customers including names, genders, dates of birth, physical addresses, banking information and passwords stored as bcrypt hashes. Extensive "know your customer" information was also exposed including scans of bank statements, cheques and identity documents complete with Aadhaar numbers. The data was provided to HIBP by a source who requested it be attributed to "firstname.lastname@example.org".
Accounts breached: 111002
Breached on: April 08, 2021
Exposed data: Bank account numbers, Dates of birth, Email addresses, Family members’ names, Genders, Government issued IDs, Income levels, Marital statuses, Nationalities, Occupations, Passwords, Phone numbers, and Physical addresses
Added on: January 19, 2022