Daily Dark Web
  • Home
  • Data Breaches
  • Inside the Adversary
    • Dark Web Informants
  • DDW Top Lists
  • Ransomware News
  • DarkWeb News
    • Vulnerability
    • Cyber Attacks
  • Unauthorized Accesses
  • About Us
No Result
View All Result
  • Home
  • Data Breaches
  • Inside the Adversary
    • Dark Web Informants
  • DDW Top Lists
  • Ransomware News
  • DarkWeb News
    • Vulnerability
    • Cyber Attacks
  • Unauthorized Accesses
  • About Us
No Result
View All Result
Daily Dark Web
No Result
View All Result
Home Data Breaches

youX Data Breach: Australian FinTech Platform Compromised

🇦🇺 Australia - youX (Drive IQ)

February 16, 2026
Reading Time: 1 min read
youX Data Breach: Australian FinTech Platform Compromised

youX, an Australian B2B FinTech platform formerly known as Drive IQ, has allegedly been compromised in a severe data breach. According to an anonymous extortion post, the exfiltration includes 141GB of data from a MongoDB Atlas cluster, exposing extensive personal and financial information belonging to hundreds of thousands of unique borrowers and broker organizations. The attackers claim they are publishing a “breach preview” involving smaller broker organizations after the company refused an extortion demand to pay for the data’s deletion. Notably, the threat actors referenced a previous March 2025 disclosure by white-hat security researcher claiming that youX failed to properly remediate the systemic vulnerabilities—such as active 2021 credentials and unrotated JWT signing secrets—identified at that time.

The allegedly compromised data includes:

  • Personal and financial details for 444,538 unique borrowers (including full names, dates of birth, physical addresses, email addresses, phone numbers, government IDs, and notes on financial difficulties)

  • 629,597 loan applications detailing income, expenses, liabilities, assets, employment status, marital status, and dependents

  • 229,236 Australian driver’s licence numbers

  • 607,822 residential addresses

  • Data on 797 broker organizations, including ABNs, banking details, staff directories, and full customer portfolios

  • 8,075 WordPress password hashes for broker employees

  • 397,716 SMS conversations between brokers and customers

  • 105,934 VIN-to-licence-plate mappings

  • Production credentials, including MongoDB connection strings, JWT signing secrets, and multiple downstream organization passwords

Tags: australiaAutomotive FinancingCredential Compromisedata-breachDrive IQextortionFinTechyouX
ShareTweet

Related Posts

Uganda Ministry of Agriculture MAAIF Suffers Data Breach
Data Breaches

Uganda Ministry of Agriculture MAAIF Suffers Data Breach

April 27, 2026
Ellipal Cryptocurrency Wallet Suffers Alleged Data Breach
Data Breaches

Ellipal Cryptocurrency Wallet Suffers Alleged Data Breach

April 27, 2026
BlackSexFinder Adult Platform Suffers Massive Data Breach
Data Breaches

BlackSexFinder Adult Platform Suffers Massive Data Breach

April 27, 2026
Jeff Honeycutt Insurance Agency Data Breach Exposes Client Info
Data Breaches

Jeff Honeycutt Insurance Agency Data Breach Exposes Client Info

April 27, 2026
FFWPU and Tongil Group Face Extensive Data Breach
Data Breaches

FFWPU and Tongil Group Face Extensive Data Breach

April 27, 2026
Terra West Management Services Suffers Major Data Breach
Data Breaches

Terra West Management Services Suffers Major Data Breach

April 24, 2026
Next Post
Mobi UZ Data Breach: Complete Corporate Network Compromise

Mobi UZ Data Breach: Complete Corporate Network Compromise

Space Bears Ransomware Hits Kymco &

Space Bears Ransomware Hits Kymco &

Recommended Stories

Hacker Claims to Have 170k Taylor Swift ERAS Tour Barcodes, Demands Ransom from Ticketmaster

Hacker Claims to Have 170k Taylor Swift ERAS Tour Barcodes, Demands Ransom from Ticketmaster

July 5, 2024
Ginlong (Solis) Data Breach Exposes Solar Plant Operations

Ginlong (Solis) Data Breach Exposes Solar Plant Operations

April 14, 2026
Massive Data Breach Exposes Payrolls of 31 Venezuelan Govt Agencies

Massive Data Breach Exposes Payrolls of 31 Venezuelan Govt Agencies

November 26, 2025

Popular Stories

  • SudamericaData Breach Exposes Over 1TB of Argentine Records

    SudamericaData Breach Exposes Over 1TB of Argentine Records

    0 shares
    Share 0 Tweet 0
  • Threat Actor Claims Sale of Dell Database Containing 49 Million Customer Records

    0 shares
    Share 0 Tweet 0
  • SUUMO, CHINTAI, At Home, HOME’S Suffer Data Breach

    0 shares
    Share 0 Tweet 0
  • Financial Tech Giant SilverLake Axis Allegedly Breached – 423GB of Data for Sale

    0 shares
    Share 0 Tweet 0
  • Telekom Serbia Investigates Leak of 160,000 Customer Records

    0 shares
    Share 0 Tweet 0
Daily Dark Web

Disclaimer: Daily Dark Web (DDW) is an independent media platform providing information, analysis, and reporting on cybersecurity, cyber incidents, and related digital developments. All content published on this website is for informational and journalistic purposes only. DDW does not support, endorse, or promote any illegal activities, threat actors, or organizations referenced in its content. Any statements, claims, or opinions expressed by third parties, including interview subjects, are their own and do not reflect the views of DDW. Such content may include unverified information and should be interpreted critically. DDW does not participate in, facilitate, or coordinate any activities discussed or referenced on this platform. Under no circumstances should any content be interpreted as encouragement, instruction, or endorsement of unlawful actions. All interactions and publications are conducted in the public interest to enhance awareness and understanding of the evolving cyber landscape.

No Result
View All Result
  • About Us
  • Home
  • Newsletter
  • Privacy Policy

Disclaimer: Daily Dark Web (DDW) is an independent media platform providing information, analysis, and reporting on cybersecurity, cyber incidents, and related digital developments. All content published on this website is for informational and journalistic purposes only. DDW does not support, endorse, or promote any illegal activities, threat actors, or organizations referenced in its content. Any statements, claims, or opinions expressed by third parties, including interview subjects, are their own and do not reflect the views of DDW. Such content may include unverified information and should be interpreted critically. DDW does not participate in, facilitate, or coordinate any activities discussed or referenced on this platform. Under no circumstances should any content be interpreted as encouragement, instruction, or endorsement of unlawful actions. All interactions and publications are conducted in the public interest to enhance awareness and understanding of the evolving cyber landscape.

Are you sure want to unlock this post?
Unlock left : 0
Are you sure want to cancel subscription?