What Happened
In March 2026, specifically around March 24–25, a data breach exposed 24,999 unique U.S. user records from bodoglife.com, a gambling and sports betting platform, which were leaked by a threat actor in a highly accessible spreadsheet format on cybercriminal forums to enable automated fraud, phishing, and SIM-swapping attacks. The compromised data included extensive personally identifiable information (PII) such as full names, verified email addresses, phone numbers, exact physical addresses, states, ZIP codes, IP addresses, and referrer details, targeting active gamblers and providing a “functional and financial map” for scams like betting-themed social engineering, credential stuffing, and high-roller phishing. This incident occurred amid the “Post-Operation Alice” landscape following dark web takedowns, heightening risks for affected users’ linked bank accounts, crypto exchanges, and emails, with no official confirmation from Bodog but urgent recommendations for password resets and hardware MFA.
