Brinztech Alert: Database of Reseller Online (Greek B2B Platform) is Leaked

Dark Web News Analysis

A threat actor on a known cybercrime forum is advertising the alleged leak of a database belonging to “Reseller Online” (reseller-online.com), identified as a Greek entity.

This claim, if true, represents a catastrophic failure of payment security standards (PCI-DSS). The leaked dataset is extensive and highly sensitive, reportedly containing:

• Full Financial Data: Credit card names, numbers, expiration dates, and CVV2 security codes.
• Authentication Data: Usernames, current passwords, and previous password history.
• Detailed PII: Full names, addresses, emails, phone numbers, and birth dates.
• Metadata: Company IDs, login timestamps, IP addresses, and billing/shipping details.

The presence of CVV2 codes and passwords in the same database dump is a “smoking gun” for a complete lack of security controls. Storing CVV2 codes is strictly prohibited by PCI-DSS. This breach provides criminals with a “fullz” package (full identity + payment info) that can be used for immediate, frictionless financial theft.

This incident occurs against a backdrop of rising cyber threats in Greece in late 2025, following other reported attacks on national infrastructure (like the Cosmote Global Solutions claim).

Key Cybersecurity Insights

This alleged data breach presents a critical and immediate threat:

• High Risk of Financial Fraud: The presence of full credit card information, including the CVV2, creates an immediate and direct pathway for financial fraud. Attackers can use these details to make online purchases or clone cards without needing any further information.
• Severe PCI-DSS Violation: Storing sensitive authentication data (like CVV2) after authorization is a major compliance violation. If confirmed, this could lead to massive fines and the revocation of the company’s ability to process payments.
• Credential Stuffing & Account Takeover: The exposure of usernames, emails, and current passwords puts users at risk of account takeover not just on this site, but on any other platform where they reuse credentials.
• B2B/Supply Chain Risk: As a “reseller” platform, the victims are likely other businesses or high-volume purchasers. Compromising these accounts could facilitate Business Email Compromise (BEC) or supply chain fraud.

Mitigation Strategies

In response to this claim, the company and its users must take immediate action:

• Immediate Card Cancellation: Any user who has stored a credit card on reseller-online.com must cancel that card immediately. Monitoring is not enough when CVV2 data is exposed; the card is compromised.
• Mandatory Password Reset: The company must force a global password reset for all users. Users should also change passwords on any other site where they used the same credentials.
• Forensic Investigation: The company needs to conduct a forensic audit to identify the breach vector (likely SQL Injection) and determine why prohibited data (CVV2) was being stored.
• MFA Implementation: Implement Multi-Factor Authentication (MFA) to prevent attackers from using the stolen credentials to log back in and place fraudulent orders.

Secure Your Business with Brinztech — Global Cybersecurity Solutions Brinztech protects organizations worldwide from evolving cyber threats. Whether you’re a startup or a global enterprise, our expert solutions keep your digital assets safe and your operations running smoothly.

Questions or Feedback? For expert advice, use our ‘Ask an Analyst’ feature. Brinztech does not warrant the validity of external claims. For general inquiries or to report this post, please email us: contact@brinztech.com