Beeja Meditation, a UK-based meditation and wellness platform, was allegedly compromised after a live GoCardless API token was leaked, granting unauthorized read-only access to internal customer and financial records. The February 17, 2026 breach reportedly exposed full names, email and full UK residential addresses, language preferences, bank mandate details (including active, cancelled, and expired BACS mandates), recurring subscription plans and estimated monthly recurring revenue, payment transaction histories, and merchant payout histories. #BeejaMeditation #GoCardless
Keypoints
- A live GoCardless API token leak allegedly compromised Beeja Meditation on February 17, 2026.
- The leak granted unauthorized read-only access to internal customer and financial records.
- Exposed customer data included full names, email addresses, and full UK residential addresses.
- Financial data exposed included bank mandate details (active, cancelled, and expired BACS mandates), payment transaction histories, and merchant payout histories.
- Recurring subscription plans and estimated monthly recurring revenue were also reportedly disclosed.
Read More: https://dailydarkweb.net/beeja-meditation-data-breach-exposes-customer-pii-and-payments/