What Happened
In September 2025, CENTRITO.CO, a Colombian e-commerce and digital services platform, suffered a data breach when approximately 22,948 user records (261MB of data) from its database “TOKYO CLOUD FREE#135” were leaked on DarkForums.st by a threat actor named “privilege.” The exposed personally identifiable information (PII) included full names, phone numbers, gender, government ID types and numbers (e.g., Cédula de Ciudadanía, Cédula de Extranjería), age, date of birth, email addresses, hardware identifiers, referral and cart IDs, and account creation/update timestamps, heightening risks of identity theft, phishing, social engineering, fraud, and device tracking. No specific attack method was detailed, but the incident prompted recommendations for users to change passwords, enable 2FA, monitor accounts, and beware of targeted scams, amid potential legal repercussions under Colombian privacy laws.
