Credix, a credit service provided by the Venezuelan internet subsidiary Fibextelecom, has allegedly been compromised due to a severe, unpatched security vulnerability. The breach was published on a hacker forum, where an unidentified actor claimed to have exploited an open security hole to exfiltrate massive amounts of customer data.
According to the actor, the breach contains 44,548 rows of detailed user records. The allegedly compromised data includes:
-
First and last names
-
National identification numbers (Prefix and Document Number)
-
Dates of birth
-
Physical addresses (Country, State, and exact street address)
-
Employment and professional details (Profession ID, Custom Profession, Category)
-
Estimated monthly income
-
Fibextelecom client status
-
Account metadata (Verification tokens, creation/update logs)
The actor also claims to possess Base64-encoded photographs of user ID cards, though these were intentionally withheld from the public sample leak.
Daily Dark WebRead More
T1
