Ixigo

In January 2019 the Indian travel and hotel booking platform Ixigo suffered a major data breach as part of a larger wave of attacks against multiple online services. The compromised data included personal information of approximately 18 million users. The breach involved the theft of sensitive user details from the company database which were subsequently put up for sale on a prominent darknet marketplace. The exposed credentials included MD5 hashed passwords which are considered cryptographically weak and susceptible to cracking. Other leaked details included social media linking information and basic demographic data.