A threat actor has allegedly put up for sale what they claim to be a database belonging to Atutech, a Romanian company specializing in the import, distribution, and installation of security systems. The post, published on a dark web forum, allegedly contains sensitive customer information, including names, email addresses, billing and shipping addresses, and other order details.
According to the threat actor, the alleged breach occurred in 2025, affecting approximately 586,213 customers. They claim that the compromised data includes full names, email addresses, physical addresses, and even invoice and warranty documents linked to customer purchases. Additionally, the post suggests that the leaked information contains details of transactions.
The actor is reportedly offering this dataset for sale to interested buyers on the dark web. The seller has provided sample records, which they allege are proof of their access to Atutech’s internal systems.
