Brinztech Alert: 1.7 Million User Records from Central American Marketplace Encuentra24 on Sale

Dark Web News Analysis: 1.7 Million Records from Encuentra24 on Sale

A database allegedly from Encuentra24, a major online classifieds and marketplace platform in Central America, is being offered for sale on a hacker forum. The breach exposes the personal information of 1,776,033 users. A compromise of a large regional marketplace is a significant event that provides a rich target list for criminals to carry out localized scams. The leaked data reportedly includes:

• User PII: Full names, email addresses, and phone numbers.
• Location Data: City, region, and country.
• Account Metadata: Unique user identifiers and account moderation flags.
• Record Count: 1,776,033 user records.

Key Cybersecurity Insights

A geographically concentrated database of online marketplace users is a powerful tool for criminals to launch highly effective and culturally specific fraud campaigns.

• A Massive Target List for Scams Across Central America: This is a geographically concentrated data leak. Criminals will use the list of 1.7 million users to launch large-scale, localized phishing and smishing (SMS phishing) campaigns in Spanish, impersonating popular regional banks, retailers, or government services to achieve a high success rate.
• Enables Sophisticated Marketplace and Escrow Scams: With the legitimate contact details of real buyers and sellers on the platform, attackers can launch highly convincing scams within the marketplace ecosystem. They can impersonate a seller to a buyer (or vice-versa) to divert payments, create fraudulent listings that use real user details, or conduct fake escrow schemes that appear to be legitimate transactions.
• A Severe Blow to Trust for a Regional E-Commerce Hub: For an online marketplace, trust is the most critical component of its business model, as it connects thousands of individual buyers and sellers. A major data breach that exposes the personal information of nearly 2 million users can shatter this trust, causing both buyers and sellers to abandon the platform for competitors.

Critical Mitigation Strategies

Encuentra24 must act to confirm this breach and protect its user base, while its users must be on high alert for fraud.

• For Encuentra24: Immediately Investigate and Secure All Accounts: The company must immediately launch a full investigation to confirm the breach and its scope. As a critical first step, they should enforce a mandatory password reset for all 1.7 million potentially affected users and strongly implement Multi-Factor Authentication (MFA).
• For Encuentra24: Launch a Transparent User Awareness Program: The company has a duty to transparently notify all affected users across Central America. This communication must warn them of the high risk of targeted phishing campaigns and scams specific to online marketplaces and provide clear guidance on how to secure their accounts.
• For Encuentra24 Users: Be on Maximum Alert for Phishing and Transactional Fraud: This is the key advice for the victims. All users must be extremely suspicious of any unsolicited communications regarding listings, payments, or account issues. They should also immediately change any passwords that were reused on other online platforms to prevent credential stuffing attacks.

Secure Your Organization with Brinztech As a cybersecurity provider, we can protect your business from the threats discussed here. Contact us to learn more about our services.

Questions or Feedback? For expert advice, use our ‘Ask an Analyst’ feature. For general inquiries or to report this post, please email us: contact@brinztech.com