Skip to main content
  1. Home
  2. Computing
  3. Web
  4. Legacy Archives

Groupon’s entire Indian user database published online

Add as a preferred source on Google
andrew_mason_groupon-sosasta
Image used with permission by copyright holder

In what appears to have been a massive mistake, the entire user database of Groupon‘s Indian subsidiary Sosasta.com has been published online and indexed by Google, reports Risky.biz. Included in the searchable database are all the email addresses and passwords of Sosasta’s 300,000 users. Whoops…

Australian security consultant Daniel Grzelak first discovered the substantial cache of login credentials as part of his research for his newly launched personal online service ShouldIChangeMyPassword.com. The discovery was made by simply searching in Google for standard SQL database files that contained words like “gmail” and “password.”

Recommended Videos

“A few hours and tweaks later, this database came up,” Grezlak tells Risky.biz. “I started scrolling, and scrolling and I couldn’t get to the bottom of the file. Then I realised how big it actually was.”

After discovering the breach Grezlak called Risky.biz to report his findings. The website then called Groupon CEO Andrew Mason, who called them back personally soon after they reported the data leak. Groupon has since had the database removed from Google — an astounding accomplishment, as anyone who’s ever tried to get Google to do them a favor knows too well — and the daily deals company has reportedly launched an internal investigation to discover how such a thing could have happened.

Groupon has alerted its Sosasta users of the escapade and urged them to change their passwords.

According to Groupon’s official statement on the matter, “Sosasta runs on its own platform and servers, and is not connected to Groupon sites in other countries,” so Groupon users in the US or anywhere outside of India probably have nothing to worry about.

Perhaps even more interesting is Grezlak’s password project, which allows users to check their email address to see if it’s included in any of the user log databases that have been published by hackers over the past year.

“There are now…1.3 million records on the site,” says Grezlak. “All the LulzSec releases are included as well as data from other high profile incidents such as the Mt. Gox Bitcoin exchange hack and the Gawker breach from a year ago.”

So if you’re wondering whether you’re possibly at risk, check your address right here.

(Pictured: Groupon CEO Andrew Mason; Image via)

Andrew Couts
Features Editor for Digital Trends, Andrew Couts covers a wide swath of consumer technology topics, with particular focus on…
Topics
Canva Code 2.0 just made vibe coding way less intimidating for everyone
Canva Code 2.0 feature

Coding used to be reserved for developers who spent years learning complex languages. That has slowly changed with vibe coding, which lets you build apps and websites using simple, plain-language prompts. 

The problem is that most of these tools still feel intimidating for regular folks, as they still need to understand the code to make any meaningful changes. If not, everything you make tends to look the same.

Read more
Windows users can finally pick when updates stop with Microsoft’s latest patch
From pausing updates on your own schedule to rolling back a broken PC in one click, here's everything new in Windows 11's July 2026 update.
Windows 11 Laptop

Patch Tuesday updates are usually a shrug-and-install affair, but Microsoft's July 2026 release actually gives you something to be excited about.

You can grab this update, tagged KB5101650, right now through Settings, or manually via the Microsoft Update Catalog if you'd rather not wait for it to roll out.

Read more
Can AI audiobooks narrate better than humans? This study says many listeners think so
New study finds listeners favor AI narrated audiobooks over traditional human narration in blind testing.
Audiobooks on Spotify on an iPhone.

You might assume most listeners would pick a real human voice over a synthetic one, but a new study says otherwise. Edison Research at SSRS surveyed 1,005 fiction audiobook fans in May 2026 for a study commissioned by AI audio company Spoken. The twist is that listeners rated the AI narration higher, and they did not even know it was AI until after they heard it (via Variety).

Why listeners favored the AI narration

Read more