Rmoney India, an Indian fintech platform, has allegedly been compromised in a significant data security incident. On January 8, 2026, the organization was listed on a dark web forum by a threat actor who claims to have exfiltrated the company’s full production database. The breach reportedly involves a 1.5GB SQL dump encompassing multiple schemas, including insurance data, online KYC records, and WhatsApp bridge integrations.
According to the actor, the leaked database contains sensitive Personally Identifiable Information (PII) and internal records. The allegedly compromised data includes:
-
Full names
-
Email addresses
-
Phone numbers
-
Aadhaar and PAN references
-
Insurance policies and metadata
-
KYC verification data
-
Lead generation and CRM records
-
WhatsApp bridge metadata
-
WordPress user credentials and uploaded files
Daily Dark WebRead More
R1
T1
