A significant data breach has allegedly struck Club Grido, the customer loyalty program for the popular Argentinian ice cream parlor chain, Grido. A threat actor posted on a dark web forum claiming to have possession of the full database for the loyalty program, releasing it for free. Grido is one of the largest ice cream chains in Latin America, with thousands of franchises across several countries, making this a potentially wide-reaching incident.
The leaked data, as detailed in the forum post, allegedly contains a vast amount of sensitive personal information belonging to the members of the loyalty program. The actor claims the dump includes internal records from the Club Grido platform. If confirmed, this breach could expose customers to various risks, including identity theft and targeted phishing attacks.
The compromised information allegedly includes:
- Full names
- National IDs (DNI)
- Email addresses
- Loyalty card numbers
- Birthdates
- Points balance
- Registration dates
- Location data (cities and provinces)
- Gender
