A threat actor published a database on a darkweb forum allegedly belonging to an adventure park from France.
The leaked data includes a wide range of sensitive details such as full names, email addresses, postal addresses, phone numbers, birthdates, and payment information. The compromised information also contains user activity history, contract numbers, and payment statuses.
The alleged data breach resulted in the exposure of personal information of 70,000 users. The post indicates that the breach occurred in 2024.
No contact information or price is stated in the post but the threat actor included sample data and a link to download the material.