India has just witnessed one of its most alarming data exposures of 2025. A website called ProxyEarth—previously unknown to the general public—has been found exposing highly sensitive information about Indian users, simply by entering a phone number.
Published Date:
Modify Date:
This isn’t a typical “database leak.”
This is real-time doxxing, accessible publicly, without hacking, login, or authorisation.
The leak potentially reveals:
- Home address
- Family members
- Email IDs
- Linked social accounts
- IP-based location
- Device details
- Past addresses
- And in some cases, live map-based tracking
Multiple publishers, including India Today, Hindustan Times, and India TV, confirmed that any Indian phone number could reveal potentially sensitive personal data.
But here’s the real problem:
Most Indians are unaware whether their data is exposed — or what they should do next.
This article provides the only comprehensive, step-by-step guide to checking exposure, correcting it immediately, and preventing further risk.
What Exactly Is ProxyEarth and Why Is It Dangerous?
ProxyEarth presents itself as a “people search engine,” pulling data from public sources, OSINT databases, breached data dumps, and online histories. But in India’s case, it appears to be aggregating far more sensitive information than typical OSINT tools.
What Makes the ProxyEarth Leak Worse Than a Regular Breach
1. No login required
Anyone can look up anyone else.
2. Live map-based location
This is extremely risky in India, where harassment, stalking, and identity misuse cases are rising.
3. Family relationships exposed
Some results show names of parents, siblings, or spouses.
4. Home addresses shown with accuracy
Even older addresses were visible for several numbers.
5. Phone-number triggered lookup
Just entering a phone number reveals a full dossier.
6. Data not behind security layers
This is an open exposure, not hacking.
This is why Indian cybersecurity experts are calling this one of the most dangerous public leaks of the past few years.
Also Read: Sanchar Saathi Mandatory App Rule (2025): What the New Government Directive Means for Your Smartphone, Privacy & Safety
How to Check If Your Data Is Exposed on ProxyEarth (Step-by-Step)
Here is the safest and most responsible way to check your own data.
⚠ IMPORTANT:
Do not look up other people.
Do not share screenshots publicly.
This guide is for self-verification only, following privacy best practices.
Step 1 — Use a VPN (Mandatory)
Since the website may record lookups, always use:
- Proton VPN
- Cloudflare WARP
- NordVPN
- or any trusted VPN
Never access the site from your home network.
Step 2 — Visit the Website Only in Incognito Mode
Open an incognito/private window.
Disable:
- location access
- cookies
- browser autofill
Step 3 — Search ONLY Your Own Phone Number
Do not search employees, partners, or family members.
Enter:
- Your primary number
- (Optional) Your alternate number
Check if the following are visible:
- Your home address
- Employer
- Email IDs
- IP-based location
- Map markers
- Relationship information
- Social media accounts
- Past addresses
If any of this shows up → your data is exposed.
Step 4 — Immediately Take Screenshots for Evidence
You may need this for:
- cybercrime reporting
- DoT escalation
- account monitoring
- future reference
Store securely in encrypted folders or Google Drive locked storage.
Also Read: India Is Switching to ‘Google Gemini’ — Here’s Why It’s So Powerful and Everything You Must Know In 2025
What To Do If Your Data Is Leaked — Immediate Actions
These steps protect you from stalking, financial fraud, and impersonation.
1. Lock Your Aadhaar & PAN Immediately
Visit UIDAI:
https://uidai.gov.in
Use:
- Aadhaar Lock/Unlock
- Biometric Lock
- VID for masked authentication
PAN:
https://www.incometax.gov.in/
Enable:
- e-PAN protection
- email OTP login
2. Enable SIM-Level Protection
Contact your operator (Jio/Airtel/Vi/BSNL):
Ask for:
- SIM lock password
- port-out lock
- no-SIM-swap request
This prevents criminals from cloning your number.
3. Change Passwords for These Accounts First
Start with accounts tied to your phone number:
Highest priority:
- Gmail
- Paytm
- Amazon
- Flipkart
- IRCTC
- DigiLocker
- SBI/ICICI/HDFC banking apps
Then enable:
- 2FA
- app passwords
- login alerts
4. Disable “Everyone” Visibility on Social Media
Switch visibility to:
- Friends only
- Followers only
- Only me
Disable:
- phone number discovery
- email discovery
- online status
5. File a Cybercrime Complaint (Less Than 3 Minutes)
Go to:
https://cybercrime.gov.in
Select:
Report Other Cyber Crimes → Data theft/privacy violation
Attach the screenshot.
This ensures the DoT & CERT-In can act.
6. Freeze Your Credit (Optional But Recommended)
Contact bureaus:
- CIBIL
- Experian
- Equifax
- CRIF Highmark
Request:
“Consumer Credit Freeze”
This prevents criminals from opening loans using leaked data.
Why Did ProxyEarth Have So Much Data About Indians?
Based on cybersecurity analysis and OSINT behaviour patterns, here are the possible sources:
- old breached databases
- real-estate websites
- fintech KYC leaks
- social media scrapers
- govt service lookups linked to public names
- voter roll scraps
- public phone-number directories
None of these alone reveals full details.
But when combined, they create a full profile.
This is known as data aggregation.
It’s legal in some countries → illegal in India.
Which is why this leak is serious.
What’s Good / What Needs Improvement
What’s Good
- The issue is now flagged by Indian authorities
- Cybersecurity experts are demanding immediate block orders
- Awareness is spreading quickly
- Users can secure their identity using simple steps
What Needs Improvement
- India lacks strong personal data laws enforcement
- No KYC-level verification for data aggregation sites
- SIM and Aadhaar linkage remains a vulnerability
- Public APIs are being misused by OSINT tools
- Many Indians reuse passwords across platforms
FAQs
1. Is ProxyEarth legal in India?
No. Data scraping + exposure of private details violates the IT Act 2000.
2. Has my location been leaked?
If the map shows your address → Yes.
3. Can criminals misuse this data?
Yes — stalking, fraud, impersonation, SIM swap, identity theft.
4. Should I change my phone number?
Not required unless harassment begins.
5. Can I request data removal?
Not guaranteed — the site is not India-compliant.
6. Should I file a cybercrime complaint?
Yes, if you saw any sensitive detail.
7. Is this like the CoWIN leak?
No — ProxyEarth aggregates multiple sources, not one breach.
8. Can minors be exposed?
Yes — any number can return results.
9. Should I delete social media?
No need, only strengthen privacy settings.
10. Will the government block this site?
Highly likely after CERT-In review.
Final Verdict
ProxyEarth isn’t just another data leak—it’s a national-scale privacy exposure affecting millions of Indian citizens. Since the tool publicly displays personal information without authentication, it puts users at immediate risk of stalking, harassment, and financial fraud.
Your quickest defence is awareness:
Check your number, secure your digital identity, lock your accounts, and file a report if needed.
Technopedia will continue monitoring updates from CERT-In, DoT, and MeitY, including potential takedown orders or legal actions.
Stay alert.
Stay protected.
Disclosure: Technopedia.org.in is reader-supported. We may earn a small commission when you purchase through our affiliate links (Amazon) at no extra cost to you.
Explore more in Cybersecurity, AI Trends, Buying Guides, and Tech Review — your next tech discovery starts here. Don’t miss any Trending Tech News.
