{"schema_version":"secwatch.filing_event.v1","accession":"0001213900-25-054319","form_type":"8-K","ticker":"ZCAR","cik":"0001854275","company_name":"Zoomcar Holdings, Inc.","filed_at":"2025-06-13T23:59:59+00:00","discovered_at":"2026-05-14T18:02:50.173574+00:00","generated_at":"2026-05-19T09:09:58.639757+00:00","sec_items":["1.05"],"event_type":"cyber","sentiment":"negative","materiality_score":0.75,"calibrated_materiality_score":0.75,"confidence":"high","headline":"Zoomcar discloses data breach affecting 8.4 million users’ personal data","bullets":["Unauthorized third party accessed personal data of approx 8.4 million Zoomcar users, including names, phone numbers, car registration numbers, addresses, and emails.","No evidence of financial information, plaintext passwords, or other sensitive identifiers being compromised.","Company activated incident response plan, engaged third-party cybersecurity experts, and notified regulatory and law enforcement authorities.","Incident has not caused any material disruption to operations to date; company continues to assess legal, financial, and reputational impacts."],"urls":{"canonical":"https://secwatch.observer/filing/0001213900-25-054319","json":"https://secwatch.observer/filing/0001213900-25-054319.json","markdown":"https://secwatch.observer/filing/0001213900-25-054319.md","text":"https://secwatch.observer/filing/0001213900-25-054319.txt","edgar_index":"https://www.sec.gov/Archives/edgar/data/1854275/000121390025054319/0001213900-25-054319-index.htm","edgar_primary_document":"https://www.sec.gov/Archives/edgar/data/1854275/000121390025054319/ea0245724-8k_zoomcar.htm"},"model":{"generated_by":"deepseek-v4-flash:cloud@v2","generated_at":"2026-05-19T09:09:58.639757+00:00"},"review":{"review_status":"machine_generated","human_reviewed":false,"corrected":false,"correction_note":null,"correction_timestamp":null,"superseded_by":null,"related_filings":[]},"source_grounded_claims":[{"claim_id":"d151b98ff2526750f9847fe65cb8078f0b932b97","claim":"Zoomcar Holdings, Inc. disclosed a cybersecurity incident: cybersecurity incident involving unauthorized access to information systems; an unauthorized third party accessed a limited dataset containing certain personal information of approximately 8.4 million users, including names, phone numbers, car registration numbers, personal addresses and email addre. Impact: To date, the incident has not resulted in any material disruption to the Company's operations; the Company continues to evaluate scope and potential impacts including legal, financial, and reputational considerations and remediation costs. Materiality is still being assessed. Discovered 2025-06-09.","evidence_excerpt":"On June 9, 2025, Zoomcar Holdings, Inc. (the “Company”) identified a cybersecurity incident involving unauthorized access to its information systems.","evidence_source":"SEC 8-K Item 1.05","evidence_url":"https://www.sec.gov/Archives/edgar/data/1854275/000121390025054319/0001213900-25-054319-index.htm","confidence":0.9,"family_label":"Cybersecurity Incidents","details":[{"label":"Nature","value":"cybersecurity incident involving unauthorized access to information systems; an unauthorized third party accessed a limited dataset containing certain personal information of approximately 8.4 million users, including names, phone numbers, car registration numbers, personal addresses and email addre"},{"label":"Impact","value":"To date, the incident has not resulted in any material disruption to the Company's operations; the Company continues to evaluate scope and potential impacts including legal, financial, and reputational considerations and remediation costs"},{"label":"Materiality","value":"assessing"},{"label":"Discovery","value":"2025-06-09"}],"fact_type":"cyber_incident"}],"license":"Source filings: public domain (SEC EDGAR). Summaries (headline + bullets): CC-BY-4.0; attribute https://secwatch.observer"}