Data of 300,000 digiDirect customers leaked in suspected attack

Sensitive customer data compromised

In the BreachForum post, the threat actor claimed that the stolen data consisted of customers’ sensitive personal information, including full names, email addresses, phone numbers, company details, zip codes, street addresses, country and state information, and date of birth.

Additionally, the message added that sensitive billing details including billing and shipping address, billing first and last names, and AIPP verification status were also part of the dump.

Victims of this type of personal information theft may face cyber threats, including identity theft, phishing, targeted spear phishing, and account takeover attacks (ATO). Compromised billing information can be used in fraudulent purchases, synthetic identity theft, and shipping fraud.