A threat actor claims to have breached and leaked the entire user database of Deliver2Alaska.com. The company, which provides mail and package forwarding services to Alaska, was targeted in a post on a cybercrime forum titled “Deliver2Alaska.com All User Data.” The actor provided a sample of the data to validate their claim.
According to the actor, the compromised data includes a wide range of personally identifiable information (PII) and account details. The leaked sample suggests the data includes:
- Full names
- Email addresses
- Phone numbers
- Stripe customer IDs
- Internal user IDs, authentication IDs, and mailbox IDs
- Account status (e.g., “VERIFIED”)
- Account creation dates
