BuyLottoOnline, a platform that describes itself as the world’s largest lottery website and operates a global network for online ticket sales, has allegedly been compromised in a data security incident. A threat actor claims to have exfiltrated a database containing tens of thousands of user records. The threat actor alleges that the data is recent, labeled as “2025 year,” and has made the dataset available for purchase or download on a dark web forum.
According to the actor, the compromised file is a CSV document containing over 38,000 lines of user activity. The sample data provided appears to span users from multiple countries, including Mexico, Argentina, Canada, and the United States. The allegedly compromised data includes:
-
Identifiers
-
Email addresses
-
Registration dates
-
Landing page details
-
Free-spin activity
-
Cookies (Session data)
-
System information
-
User Country
-
Order IDs
-
Cart amounts
Daily Dark WebRead More
R1
T1
