According to the posts published on a dark web forum, the threat actor shared data claimed to be from TruistBank and Neiman Marcus.
The post indicates that the alleged leak from Neiman Marcus consists of account balances, browser user agent details, credit cards, dates of birth, email addresses, gift cards, IP addresses, names, payment histories, payment methods, phone numbers, physical addresses.
The threat actor also states that the fashion brand refused to pay to the threat actors.
In another post, the same threat actor also published 65k employee data claiming that the leaked data is from TruistBank. The leaked data consists of account balances, dates of birth, email addresses, job titles, names, partial credit card data, phone numbers according to the threat actor.
The threat actor also included screenshots from the alleged attack as a proof.
No contact information or price is stated in these posts.