A threat actor known as Spirigatito has leaked the customer database of LCBO (Liquor Control Board of Ontario), exposing 165,840 customer records containing account IDs, full names, email addresses, phone numbers, and account types. Although the sample lacks payment or address data, the exposed name‑email‑phone combinations tied to verified LCBO accounts enable targeted phishing, brand‑spoofing scams, fraudulent loyalty/refund schemes, and SIM‑swap or impersonation attacks. #Spirigatito #LCBO
Keypoints
- Spirigatito published the LCBO database leak on a public cybercrime forum.
- The breach affects 165,840 retail customer records with fields: Account ID, First Name, Last Name, Email, Phone, and Account Type.
- Published JSON samples confirm UUID-format account IDs and Ontario phone numbers tied to verified LCBO customer accounts.
- No payment card or address data was visible, but the exposed data enables targeted phishing, loyalty/refund scams, SIM-swap attempts, and impersonation.
- LCBO is a Government of Ontario Crown corporation operating 670+ retail stores plus a national e-commerce platform, increasing the potential impact.
DarkWebInformer.com Providing intel from some of the darkest places on the Dark Web & Clearnet. Breaches, Darknet Markets, Ransomware, Threat Alerts, & more!