Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
Aura Event & Experiences

Aura Event & Experiences Vendor Cyber Rating & Cyber Score

aura.co.in

A multi-disciplinary event agency, specializing in Brand & service launches; Inaugural & protocol events, Seminar & conferences, Dealer meets, Live concerts for TV & Non-TV, Special events, Space & environment design - Conducting activities across India & International locations. - Attention to details, timely suggestions and meticulous planning are our forte.


AEE A.I CyberSecurity Scoring

AEE
Company Information
Website:http://www.aura.co.in
Employees number:324
Number of followers:4,830
NAICS:56192
Industry Type:Events Services
Homepage:aura.co.in
AEE Risk Score (AI oriented)
Between 600 and 649
logo
AEEEvents Services
Updated:
19/03/2026
600/1000
Poor
Caa
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
AEE Global Score (TPRM)
xxxx
logo
AEEEvents Services
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

AEE
AEEPoor
Current Score
600Caa (POOR)
01000
2 incidents
-90 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
610Before Incident
JUNE 2026
609Before Incident
MAY 2026
606Before Incident
APRIL 2026
604Before Incident
MARCH 2026
688Before Incident
Breach
01 Mar 2026AEE
Aura: Hacked: Aura confirms at least 900,000 impacted by ShinyHunters breach

Aura Discloses Phishing Attack Linked to ShinyHunters, Exposing Nearly 1M Records

598After Incident
CRITICAL-90
AUR1773887129
Aura Discloses Phishing Attack Linked to ShinyHunters, Exposing Nearly 1M Records Identity protection firm Aura confirmed this week that it fell victim to a targeted phone phishing attack earlier this month, orchestrated by the ShinyHunters cyber extortion group. The incident, which the company disclosed after being listed on the group’s darknet leak site, resulted in the compromise of approximately 900,000 customer records. The attack began when a single employee’s account was breached for roughly one hour before Aura detected the intrusion. The company responded by terminating access, activating its incident response plan, and engaging external cybersecurity and legal experts, as well as notifying law enforcement. While the breach was brief, the impact was severe: the majority of the exposed records contained names and email addresses from a marketing tool inherited through a 2021 acquisition. Aura clarified that fewer than 20,000 active customers and less than 15,000 former customers were affected. Critically, the company stated that no Social Security numbers, passwords, or financial information were accessed. ShinyHunters, however, claimed on its leak site that 12GB of data including personally identifiable information (PII) and internal corporate records had been stolen and published online. The group alleged that Aura failed to negotiate despite multiple offers, stating, “They don’t care.” This attack is part of a broader campaign by ShinyHunters, which has targeted multiple organizations since late 2023 by exploiting vulnerabilities in Salesforce instances. Other victims of the group include SoundCloud, Crunchbase, Bumble, and Harvard University, among at least 20 others. Salesforce has since issued guidance for customers to secure their systems.
INCIDENT DETAILS -
TYPE
Phishing Attack
MOTIVATION
Cyber Extortion
IMPACT
Data Compromised: 900,000 recordsSystems Affected: Marketing tool (inherited via 2021 acquisition)Identity Theft Risk: Limited (no SSNs, passwords, or financial data exposed for most records)Payment Information Risk: None
DATA BREACH
NamesEmail addressesPersonally Identifiable Information (PII)Internal corporate recordsNumber Of Records Exposed: 900,000Sensitivity Of Data: Low to moderate (no SSNs, passwords, or financial data for most records)Data Exfiltration: Yes (12GB claimed by ShinyHunters)Personally Identifiable Information: Yes
FEBRUARY 2026
688Before Incident
JANUARY 2026
686Before Incident
DECEMBER 2025
685Before Incident
NOVEMBER 2025
684Before Incident
OCTOBER 2025
682Before Incident
SEPTEMBER 2025
681Before Incident
AUGUST 2025
679Before Incident
JANUARY 2025
760Before Incident
Breach
01 Jan 2025AEE
Aura: Aura data breach exposes 900,000 records

Aura Confirms Data Breach Affecting Nearly 900,000 Records After Vishing Attack

667After Incident
CRITICAL-93
AUR1773923568
Aura Confirms Data Breach Affecting Nearly 900,000 Records After Vishing Attack Aura, a digital security provider, disclosed a data breach exposing nearly 900,000 records following a voice phishing (vishing) attack targeting an employee. The incident stemmed from a marketing platform acquired in 2021, rather than Aura’s core account systems. The compromised data included full names, email addresses, home addresses, and phone numbers, impacting approximately 20,000 current and 15,000 former customers. A larger pool of marketing contacts was also exposed. Notably, Social Security numbers, passwords, and financial details were not accessed, reducing the risk of immediate account takeovers. However, the stolen contact information could fuel follow-up phishing, impersonation, or fraud campaigns. The breach gained attention after the threat group ShinyHunters claimed responsibility, listing Aura on its extortion site and alleging the theft of 12GB of files containing customer and internal corporate data. While Aura confirmed the breach, it has not verified all of ShinyHunters’ claims, including broader allegations about single sign-on access. Data breach monitoring services later reported a leaked CRM dataset with over 900,000 email records, some of which had appeared in prior breaches. The exposed data may also include IP addresses and customer service notes. Aura is collaborating with external cybersecurity experts, has notified law enforcement, and plans to contact affected individuals directly. The incident underscores the risks associated with inherited systems from mergers and acquisitions, as well as the persistent threat of phishing-led compromises leading to extortion and data leaks. The breach has been added to Have I Been Pwned, allowing users to check if their information was exposed.
INCIDENT DETAILS -
TYPE
Data Breach
MOTIVATION
Extortion, Data Theft
IMPACT
Data Compromised: Nearly 900,000 recordsSystems Affected: Marketing platform (acquired in 2021)Brand Reputation Impact: YesIdentity Theft Risk: Potential (phishing, impersonation, fraud)Payment Information Risk: No
DATA BREACH
Full namesEmail addressesHome addressesPhone numbersIP addressesCustomer service notesNumber Of Records Exposed: Nearly 900,000Sensitivity Of Data: Moderate (PII, but no SSNs, passwords, or financial details)Data Exfiltration: Alleged 12GB of files (customer and internal corporate data)Personally Identifiable Information: Yes

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for AEE ?
?
What was AEE's A.I Rankiteo Cyber Score in June 2026 ?
?
What was AEE's A.I Rankiteo Cyber Score in May 2026 ?
?
What was AEE's A.I Rankiteo Cyber Score in April 2026 ?
?
What was AEE's A.I Rankiteo Cyber Score in March 2026 ?
?
What was AEE's A.I Rankiteo Cyber Score in February 2026 ?
?
What was AEE's A.I Rankiteo Cyber Score in January 2026 ?
?
What was AEE's A.I Rankiteo Cyber Score in December 2025 ?
?
What was AEE's A.I Rankiteo Cyber Score in November 2025 ?
?
What was AEE's A.I Rankiteo Cyber Score in October 2025 ?
?
What was AEE's A.I Rankiteo Cyber Score in September 2025 ?
?
What was AEE's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on AEE's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with AEE ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view AEE's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?