Unacademy
Company Details
Linkedin ID:
unacademy
Website:
Employees number:
8,937
Number of followers:
1,181,962
NAICS:
611693
Industry Type:
Homepage:
unacademy.com
IP Addresses:
0
Company ID:
UNA_2978531
Scan Status:
In-progress
Unacademy Company CyberSecurity Posture
unacademy.com
Unacademy aims to build the world's largest online knowledge repository for multi-lingual education. We use technology to empower great educators and create a community of self-learners. Our vision is to partner with the brightest minds and democratise education for everyone looking to learn. Join us in our journey to change the future of education. Visit us at unacademy.com **Follow us on:** twitter.com/unacademy facebook.com/unacademy youtube.com/user/unacademy instagram.com/unacademy blog.unacademy.com
Unacademy A.I CyberSecurity Scoring
Unacademy Risk Score (AI oriented)Between 750 and 799
Unacademy
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Unacademy Global Score (TPRM)XXXX
Unacademy
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Unacademy Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Unacademy
Data Leak
Rankiteo Explanation
Attack with significant impact with internal employee data leaks
Description: Online learning platform Unacademy has suffered a data breach after a hacker gained access to their database and started selling the account information for close to 22 million users. Unacademy is one of India's largest online learning platforms boasting 14K teachers, over a million video lessons, and over 20 million registered users (learners). On May 3rd, 2020, cyber intelligence company Cyble Inc. discovered that a threat actor had begun to sell an Unacademy user database containing 20 million accounts for $2,000. The database contains a total of 21,909,707 user records. These records include usernames, SHA-256 hashed passwords, date joined, last login date, email addresses, first and last names, and whether the account is active, a staff member, or a superuser.
Unacademy Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Unacademy
Incidents vs E-Learning Providers Industry Average (This Year)
No incidents recorded for Unacademy in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Unacademy in 2025.
Incident Types Unacademy vs E-Learning Providers Industry Avg (This Year)
No incidents recorded for Unacademy in 2025.
Incident History — Unacademy (X = Date, Y = Severity)
Unacademy cyber incidents detection timeline including parent company and subsidiaries
Unacademy Company Subsidiaries
Unacademy aims to build the world's largest online knowledge repository for multi-lingual education. We use technology to empower great educators and create a community of self-learners. Our vision is to partner with the brightest minds and democratise education for everyone looking to learn. Join us in our journey to change the future of education. Visit us at unacademy.com **Follow us on:** twitter.com/unacademy facebook.com/unacademy youtube.com/user/unacademy instagram.com/unacademy blog.unacademy.com
Loading...
Unacademy Similar Companies
Free Online Courses
Online Tutorials is a website sharing online courses and tutorials absolutely free of cost on a daily basis. The tutorials we share on our website are produced by the world's top and leading online courses providers like Udemy, Coursera, Skillshare, Edx, Bitdegree, Simpliv and from top Universities
.png)
Unacademy CyberSecurity News
December 10, 2025 03:01 PM
Unacademy’s valuation may be less than $500 million, from $3.5 billion in 2021: Gaurav Munjal
After a notable decrease in valuation, Unacademy is recalibrating its strategy. Co-founder Gaurav Munjal is dedicated to enhancing product...
November 26, 2025 08:00 AM
A comprehensive list of 2025 tech layoffs
A complete list of all the known layoffs in tech, from Big Tech to startups, broken down by month throughout 2024 and 2025.
June 04, 2025 07:00 AM
WARNING: Hackers Target Salesforce Accounts In Sophisticated Data Extortion Attacks
May 28, 2025 07:00 AM
Exclusive: Security startup Horizon3.ai is raising $100M in new round
Horizon3.ai, a cybersecurity startup that provides tools like autonomous penetration testing, is seeking to raise $100 million in a new funding round.
May 15, 2025 07:00 AM
10 Biggest Data Breaches in India [2025]
Learn about the biggest data breaches in India, why the India is an attractive target for cyber attacks and how these could have been...
May 11, 2025 07:00 AM
23andMe customers notified of bankruptcy and potential claims — deadline to file is July 14
23andMe, the genetic testing giant once valued in the billions, is now navigating Chapter 11 bankruptcy and notifying millions of current...
March 17, 2025 07:00 AM
Google revives talks to acquire Wiz at higher valuation
Google's parent company Alphabet is again in advanced talks to acquire cloud cybersecurity startup Wiz, a person familiar with the deal told TechCrunch.
March 03, 2025 08:00 AM
Alleged Data Breach Exposes 426,000 Users of Indian EdTech Platform
The leaked dataset allegedly includes full names, email addresses, phone numbers, and transactional payment histories.
November 21, 2024 08:00 AM
Wiz acquires Dazz for $450M to expand its cybersecurity platform
Wiz, one of the most talked-about names in the world of cybersecurity, is making a significant acquisition to expand its product reach in...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Unacademy CyberSecurity History Information
Official Website of Unacademy
The official website of Unacademy is http://unacademy.com.
Unacademy’s AI-Generated Cybersecurity Score
According to Rankiteo, Unacademy’s AI-generated cybersecurity score is 790, reflecting their Fair security posture.
How many security badges does Unacademy’ have ?
According to Rankiteo, Unacademy currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Unacademy have SOC 2 Type 1 certification ?
According to Rankiteo, Unacademy is not certified under SOC 2 Type 1.
Does Unacademy have SOC 2 Type 2 certification ?
According to Rankiteo, Unacademy does not hold a SOC 2 Type 2 certification.
Does Unacademy comply with GDPR ?
According to Rankiteo, Unacademy is not listed as GDPR compliant.
Does Unacademy have PCI DSS certification ?
According to Rankiteo, Unacademy does not currently maintain PCI DSS compliance.
Does Unacademy comply with HIPAA ?
According to Rankiteo, Unacademy is not compliant with HIPAA regulations.
Does Unacademy have ISO 27001 certification ?
According to Rankiteo,Unacademy is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Unacademy
Unacademy operates primarily in the E-Learning Providers industry.
Number of Employees at Unacademy
Unacademy employs approximately 8,937 people worldwide.
Subsidiaries Owned by Unacademy
Unacademy presently has no subsidiaries across any sectors.
Unacademy’s LinkedIn Followers
Unacademy’s official LinkedIn profile has approximately 1,181,962 followers.
NAICS Classification of Unacademy
Unacademy is classified under the NAICS code 611693, which corresponds to Others.
Unacademy’s Presence on Crunchbase
Yes, Unacademy has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/unacademy.
Unacademy’s Presence on LinkedIn
Yes, Unacademy maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/unacademy.
Cybersecurity Incidents Involving Unacademy
As of December 25, 2025, Rankiteo reports that Unacademy has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Unacademy has an estimated 2,711 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Unacademy ?
Incident Types: The types of cybersecurity incidents that have occurred include Data Leak.
Incident Details
Can you provide details on each incident ?
Title: Unacademy Data Breach
Description: Online learning platform Unacademy has suffered a data breach after a hacker gained access to their database and started selling the account information for close to 22 million users.
Date Detected: 2020-05-03
Type: Data Breach
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Data Leak.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach UNA1446301222
Data Compromised: Usernames, Sha-256 hashed passwords, Date joined, Last login date, Email addresses, First and last names, Account status, Staff member status, Superuser status
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Usernames, Sha-256 Hashed Passwords, Date Joined, Last Login Date, Email Addresses, First And Last Names, Account Status, Staff Member Status, Superuser Status and .
Which entities were affected by each incident ?
Incident : Data Breach UNA1446301222
Entity Name: Unacademy
Entity Type: Online Learning Platform
Industry: Education
Location: India
Size: {'teachers': 14000, 'video_lessons': 1000000, 'registered_users': 20000000}
Customers Affected: 21909707
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach UNA1446301222
Type of Data Compromised: Usernames, Sha-256 hashed passwords, Date joined, Last login date, Email addresses, First and last names, Account status, Staff member status, Superuser status
Number of Records Exposed: 21909707
Data Encryption: SHA-256 hashed passwords
Personally Identifiable Information: email addressesfirst and last names
References
Where can I find more information about each incident ?
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Cyble Inc.Date Accessed: 2020-05-03.
Additional Questions
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2020-05-03.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were usernames, SHA-256 hashed passwords, date joined, last login date, email addresses, first and last names, account status, staff member status, superuser status and .
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were usernames, staff member status, superuser status, last login date, email addresses, date joined, first and last names, SHA-256 hashed passwords and account status.
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 323.0.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident is Cyble Inc..
.png)
Latest Global CVEs (Not Company-Specific)
Description
A vulnerability was determined in itsourcecode Online Frozen Foods Ordering System 1.0. This affects an unknown part of the file /contact_us.php. This manipulation of the argument Name causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilized.
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
C-Kermit (aka ckermit) through 10.0 Beta.12 (aka 416-beta12) before 244644d allows a remote Kermit system to overwrite files on the local system, or retrieve arbitrary files from the local system.
Risk Information
cvss3
Base: 8.9
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:L
Description
Telenium Online Web Application is vulnerable due to a Perl script that is called to load the login page. Due to improper input validation, an attacker can inject arbitrary Perl code through a crafted HTTP request, leading to remote code execution on the server.
Risk Information
cvss3
Base: 9.8
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss4
Base: 9.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Fujitsu / Fsas Technologies ETERNUS SF ACM/SC/Express (DX / AF Management Software) before 16.8-16.9.1 PA 2025-12, when collected maintenance data is accessible by a principal/authority other than ETERNUS SF Admin, allows an attacker to potentially affect system confidentiality, integrity, and availability.
Risk Information
cvss3
Base: 5.6
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
Description
ONLYOFFICE Docs before 9.2.1 allows XSS in the textarea of the comment editing form. This is related to DocumentServer.
Risk Information
cvss3
Base: 6.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=unacademy' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
