A threat actor is advertising the alleged customer database of BRSK (brsk.co.uk), a UK-based telecommunications company specializing in full fibre broadband. The actor is offering the dataset, which contains 230,105 records, on a hacking forum, with a sample provided and a price set for negotiation via direct message.According to the actor, the allegedly compromised data includes records related to customer bookings and installations. The fields available in the dataset include:
-
Full names (customer_first_name, customer_last_name)
-
Email addresses (customer_email, customer_data_email)
-
Customer contact numbers (customer_contact_number, customer_alternative_contact_number)
-
Physical addresses (address, alternative_address)
-
Installation/Booking details (active_booking_date, status, scheduled_date, type_display)
-
Internal brsk identifiers (brsk_id, client_organisation_name)
-
Location data (location_latitude, location_longitude)
-
“is_vulnerable” and “vulnerabilities” fields












