A threat actor has allegedly leaked the customer database of Zinli, a digital dollar wallet and Visa prepaid card provider, exposing the sensitive information of more than 100,000 of its Venezuelan users. The data was posted on a notorious dark web forum, where the actor shared a sample of the compromised information, indicating a significant security incident impacting the financial application’s user base.
Zinli operates as a popular financial platform in several Latin American countries, including Venezuela, offering a digital dollar wallet and an international Visa prepaid card. It serves as a crucial tool for many Venezuelans to receive and send dollars, make online purchases, and navigate the country’s complex economic landscape, often acting as an alternative to traditional banking or services like Zelle. The ability to operate in dollars makes it a vital service for users to protect their savings from hyperinflation and transact internationally.
The breach purportedly exposes a wide range of personally identifiable information. According to the forum post, the leaked dataset is from June 2025 and contains extensive details on each affected customer. The consequences for users could be severe, potentially leading to identity theft, targeted phishing attacks, and financial fraud.
The allegedly leaked data includes:
- Full Name
- Email Address
- Phone Number
- Image of the Client
