C
C

CarGurus

cargurus.com
Breaches
1
1 verified
Records Exposed
12.5M
Total across all breaches
Data Types Leaked
5
0 high risk
Latest Breach
2026
CarGurus

Breach History

CarGurus
Feb 2026High
12.5M
Records exposed
5
Data types leaked
Verified
Status

In February 2026, the automotive marketplace CarGurus was the target of a data breach attributed to the threat actor ShinyHunters. Following an attempted extortion, the data was published publicly and contained more than 12M email addresses across multiple files including user account ID mappings, finance pre-qualification application data and dealer account and subscription information. Impacted data also included names, phone numbers, physical and IP addresses, and auto finance application outcomes.

Exposed Data Types
Email addressesIP addressesNamesPhone numbersPhysical addresses
Incident Status
Data breachYes
Data brokerNo
Policy contradictionsNo
Exposed Data Types
Email addressesLow risk
IP addressesMedium risk
NamesLow risk
Phone numbersMedium risk
Physical addressesMedium risk