A threat actor has leaked a database allegedly belonging to Lüks Artvin Seyahat, a prominent intercity bus transportation company operating in Turkey. The leaked file, posted on a dark web hacking forum, contains over 20,000 records, suggesting a significant compromise of the company’s customer data.
An analysis of the sample data indicates the leak contains a vast amount of sensitive personally identifiable information (PII). According to the compromised file, the exposed data includes:
- Full names
- Email addresses
- Physical addresses
- Phone numbers
- Dates of birth
- Plaintext passwords (appearing as short numeric strings)
- Turkish National ID numbers (TCNUMBER)
- Gender
- Career and education details
