A threat actor using the handle Spirigatito publicly leaked three datasets from Den kulturelle skolesekken (DKS), exposing 1,389,534 rows of records including performer and user PII, internal county-council messages, and programme planning data. The breach, posted on an open cybercrime forum, creates high risk of targeted social engineering and operational disruption for Kulturtanken and DKS coordinators across Norway. #Spirigatito #DenKulturelleSkolesekken
Keypoints
- Spirigatito posted three separate dataset leaks totaling 1,389,534 rows from Den kulturelle skolesekken (DKS) on a public forum.
- Exposed records include full names, email addresses (including county-council domains), +47 phone numbers, postal addresses, and nationality/language fields.
- Internal communications between DKS coordinators and county cultural officers are included, showing full message bodies, sender/recipient mappings, and 2023 timestamps.
- Programme and tour planning data were leaked, revealing production names, budgets, performer and staff counts, school-year targeting, seasons, and travel logistics with quoted fares.
- The incident directly impacts Kulturtanken and multiple fylkeskommune/kommune entities and raises a high risk of targeted social-engineering against government employees, performers, and school administrators.
DarkWebInformer.com Providing intel from some of the darkest places on the Dark Web & Clearnet. Breaches, Darknet Markets, Ransomware, Threat Alerts, & more!