A threat actor has allegedly leaked a database belonging to Lipigas, a major Chilean energy company. The data was posted on a popular hacker forum, exposing what appears to be sensitive user and employee information. Lipigas, headquartered in Chile, is a leading distributor of liquefied petroleum gas (LPG) in the country, serving a vast number of residential, commercial, and industrial clients. The breach is significant due to the company’s critical role in the nation’s energy infrastructure and the personal nature of the data involved.
The leak allegedly originates from a test subdomain of the company, pruebas.sucursal.lipigas.cl. Despite originating from a testing environment, the shared data sample contains highly sensitive Personally Identifiable Information (PII). The exposure of this information could potentially place affected individuals at risk of phishing attacks, identity theft, and other malicious activities. As of now, the company has not publicly addressed the alleged security incident.
The data allegedly leaked from the database includes the following fields:
- User ID
- RUT (Chilean National ID)
- Hashed Password
- Name
- Last Name
- Gender
- Date of Birth
- Phone Number
