The company has recently confirmed in a blog post that they have been hacked and that 17 million user records from their system have been stolen as a result of the hack. Zomato says that information such as email addresses have been stolen, including the password to your Zomato account. However at the same time, the company states that due to the way they encrypt the passwords using a one-way hashing algorithm, it will be hard for the hackers to convert it into plain text and use it to log into your account.
At the same time they do suggest that maybe on the off-chance that they do, you should probably change your passwords anyway just to be safe. They are also reassuring users that no payment data or information has been stolen as this information is stored separately. “Important note – payment related information on Zomato is stored separately from this (stolen) data in a highly secure PCI Data Security Standard (DSS) compliant vault. No payment information or credit card data has been stolen/leaked.”
Zomato is also stating that they have since reset the passwords for users affected by the hack, meaning that they have been resecured, but if you want some peace of mind we guess you should update your login information anyway.