Quick commerce startup KiranaPro Datalabs has reportedly fallen victim to a severe cyberattack that compromised its app code and exposed sensitive user information, including names, mailing addresses, and payment details.

Co-founder and CEO Deepak Ravindran confirmed to TechCrunch that the platform’s app data and backend infrastructure hosted on AWS and GitHub were wiped out. Although the KiranaPro app remains live, it is currently not processing any customer orders.

The breach was discovered on May 26, when the team noticed suspicious activity in their Amazon Web Services (AWS) account. Hackers had reportedly gained control of KiranaPro’s root access credentials for both AWS and GitHub. The attack is suspected to have been executed between May 24 and 25, likely through a former employee’s account.

Despite using Google Authenticator for multi-factor authentication, the team was locked out of root access. All EC2 instances—used to run applications—were deleted, and logs were inaccessible.

CTO Saurav Kumar stated that while the team can still log in via IAM (Identity and Access Management), they’re unable to retrieve vital activity logs due to the compromised root access. The startup is now working with GitHub support to trace IP addresses associated with the attack and is preparing to take legal action against former employees who failed to hand over access credentials.

The exact method of the breach remains unclear.

Founded in 2024 by Deepak Ravindran and Deepankar Sarkar, KiranaPro connects users to neighborhood kirana stores through a voice-based AI interface and the ONDC network, promising grocery deliveries within 10–20 minutes. It is backed by investors such as Blume Ventures, Snow Leopard Ventures, TurboStart, and Unpopular Ventures, having raised over $188K so far. Earlier this year, KiranaPro aimed to onboard 100 million users and 1 million kirana stores.

Quick commerce startup KiranaPro Datalabs has reportedly fallen victim to a severe cyberattack that compromised its app code and exposed sensitive user information, including names, mailing addresses, and payment details.

Co-founder and CEO Deepak Ravindran confirmed to TechCrunch that the platform’s app data and backend infrastructure hosted on AWS and GitHub were wiped out. Although the KiranaPro app remains live, it is currently not processing any customer orders.

The breach was discovered on May 26, when the team noticed suspicious activity in their Amazon Web Services (AWS) account. Hackers had reportedly gained control of KiranaPro’s root access credentials for both AWS and GitHub. The attack is suspected to have been executed between May 24 and 25, likely through a former employee’s account.

Despite using Google Authenticator for multi-factor authentication, the team was locked out of root access. All EC2 instances—used to run applications—were deleted, and logs were inaccessible.

CTO Saurav Kumar stated that while the team can still log in via IAM (Identity and Access Management), they’re unable to retrieve vital activity logs due to the compromised root access. The startup is now working with GitHub support to trace IP addresses associated with the attack and is preparing to take legal action against former employees who failed to hand over access credentials.

The exact method of the breach remains unclear.

Founded in 2024 by Deepak Ravindran and Deepankar Sarkar, KiranaPro connects users to neighborhood kirana stores through a voice-based AI interface and the ONDC network, promising grocery deliveries within 10–20 minutes. It is backed by investors such as Blume Ventures, Snow Leopard Ventures, TurboStart, and Unpopular Ventures, having raised over $188K so far. Earlier this year, KiranaPro aimed to onboard 100 million users and 1 million kirana stores.