A threat actor has allegedly breached and leaked the customer database of Dyalcom[.]pl, an online store and hosting domain provider based in Poland. The data was posted on a hacking forum, with the perpetrator releasing a 180MB SQL file purportedly containing the company’s customer database. Dyalcom.pl provides hosting services, making it a key part of the digital infrastructure for its clients, whose sensitive information may now be exposed.
The leaked database structure suggests a significant compromise of personally identifiable information (PII). The exposure of this data could place affected individuals and companies at high risk of targeted phishing campaigns, identity theft, and other fraudulent activities. The details within the leaked tables indicate a comprehensive collection of customer and operational data.
The allegedly leaked data includes the following fields:
- Customer, manufacturer, and supplier IDs
- Company name
- First and last names
- Full physical addresses including street, city, and postcode
- Phone and mobile numbers
- VAT identification number
- Other personal identifiers
