A threat actor has allegedly leaked a database belonging to Darvin Market, a prominent Russian retailer specializing in household goods, electronics, and tools. The company, operating under the domain Darvin-market.ru, appears to be the latest victim of a significant data breach. The leaked dataset purportedly contains over 67,000 records, compromising the sensitive information of both the company’s customers and its employees.
The compromised information, claimed to be updated in 2025, allegedly includes a wide range of personally identifiable information (PII). The exposure of such data could potentially lead to various malicious activities, including phishing attacks, identity theft, and other forms of fraud targeting the individuals whose details are included in the leak. The full extent of the allegedly leaked data includes:
- Full names, logins, and email addresses
- Personal and work phone numbers
- Company, department, and position details for staff
- User activity data, such as last login and registration dates
