youX, an Australian B2B FinTech platform formerly known as Drive IQ, allegedly suffered a 141GB data breach from a MongoDB Atlas cluster exposing personal, financial, and operational records for hundreds of thousands of borrowers and broker organizations. Attackers claim a “breach preview” after an extortion demand was refused and say production credentials, including MongoDB connection strings and unrotated JWT signing secrets, were exfiltrated, echoing a March 2025 white‑hat disclosure about unresolved vulnerabilities. #youX #MongoDBAtlas
Keypoints
- Attackers claim to have exfiltrated 141GB from a MongoDB Atlas cluster containing data on hundreds of thousands of borrowers and brokers.
- The leaked records reportedly include full names, dates of birth, addresses, government IDs, loan applications, SMS conversations, and WordPress password hashes.
- Threat actors say they published a “breach preview” for smaller broker organizations after youX refused to pay an extortion demand.
- The dump reportedly contains production credentials such as MongoDB connection strings, JWT signing secrets, and downstream organization passwords.
- A March 2025 white‑hat disclosure allegedly warned youX of unresolved issues like active 2021 credentials and unrotated JWT signing secrets before this incident.
Read More: https://dailydarkweb.net/youx-data-breach-australian-fintech-platform-compromised/