Cgpey International Private Limited, an Indian fintech platform specializing in payment infrastructure, salary disbursement, and business automation, has allegedly been compromised by an unidentified party. The incident, which reportedly took place on February 3, 2026, resulted in the exfiltration of approximately 26 GB of the company’s internal databases. The actor behind the breach claims the compromise was successful despite the platform’s public assertions of providing “100% secure” solutions.
The allegedly compromised data encompasses 3.85 million unique records, primarily consisting of payment processing logs from various merchants. According to the actor, the compromised data includes:
-
Transaction IDs
-
Payment amounts
-
Client names
-
User IDs
-
Phone numbers
-
Transaction links
-
Internal employee information (including email addresses, IP addresses, and hashed passwords)
Daily Dark WebRead More
R1
T1
