Data of 300k digiDirect customers leaked in alleged attack

Sensitive customer data compromised

In the BreachForum post, the threat actor claimed stolen data consists of customers’ sensitive personal information, including full names, email addresses, phone numbers, company details, zip codes, street addresses, country and state information, and date of birth.

Additionally, the post added, sensitive billing details including billing and shipping address, billing “first” and “last” names, and the AIPP verification status, were also a part of the dump.

Victims of such personal information theft can face cyber threats including identity theft, phishing, targeted spear phishing, and account takeover (ATO) attacks. Compromised billing details can be used in fraudulent purchases, synthetic identity thefts, and shipping frauds.