A threat actor has allegedly leaked the database of TruCSR, a notable Indian platform that facilitates Corporate Social Responsibility (CSR) activities. TruCSR serves as a bridge between corporations and non-governmental organizations (NGOs) across India, managing social projects and initiatives. The alleged breach was announced on a hacking forum, where a member shared a link to a file purportedly containing the user data stolen from the platform.
The exposure of this information could have significant consequences for the users of the platform, which include corporate donors and NGO members. The threat actor claims the leaked database contains sensitive Personally Identifiable Information (PII). While the company has not yet issued a public statement on the matter, the availability of such data on the web poses a serious risk to those affected.
The leaked data allegedly includes the following information:
- Name
- Bcrypt Password
- Phone
