Threat Actor: Unknown | unknown
Victim: ToyyibPay | ToyyibPay
Price: 0.7 BTC
Exfiltrated Data Type: Personally Identifiable Information (PII)
Key Points :
- The data breach involves over 12GB of sensitive information from toyyibPay.
- The compromised data is spread across 88 CSV files.
- Data includes customer names, email addresses, and phone numbers.
- The threat actor claims to offer priority access to the data for sale.
- An escrow service is available to ensure transaction security.
A recent post on a dark web forum alleges that the Malaysian online payment platform toyyibPay has suffered a data breach. The threat actor behind the post claims to have gained access to the company’s database, which reportedly contains over 12GB of sensitive information spread across 88 CSV files.
toyyibPay, known for providing businesses and organizations with a low-cost platform to accept online payments. The threat actor claims that the compromised data includes personally identifiable information (PII), such as customer names, email addresses, and phone numbers, particularly within the platform’s billing records. The threat actor also included samples from the alleged leak
The post suggests that the data is available for sale, with the threat actor offering priority access to toyyibPay. The price for the alleged leak is 0.7 BTC. The offer includes the option for an escrow service, to ensure both parties fulfill their ends of the deal.
The post 12GB Customer Data From toyyibPay is Allegedly For Sale appeared first on Daily Dark Web.