ATOA allegedly exposed: 23,685 fintech records and 326 KYC document archives

Summary

ATOA, a Fintech company, has allegedly suffered a data breach. A forum post claims the exposure includes user, wallet, transaction, KYC, contact, and invoice records, totaling 23,685 tabular records and 326 KYC document archives.

Full text

ATOA has been named in a forum leak post involving an alleged database exposure with user, wallet, transaction, instalment, KYC, contact, and invoice records. The actor claims the dataset includes 23,685 tabular records and 326 KYC document archives. Post details TargetATOA CountryFrance SectorFintech / Payments / KYC Data IncidentDatabase Leak Exposure23,685 records + 326 KYC document archives Actortabaskoss PriceNot stated Observed21/05/2026 Claimed data User and wallet records Names, emails, and phone numbers Home address and nationality fields Date and place of birth fields Wallet balance and account status data IBAN, bank detail, and tax identifier fields Transaction and instalment records KYC document archives including passports, ID cards, proof-of-address files, and company registration documents Invoice and billing records Potential impact Because the alleged dataset includes financial, KYC, identity, contact, and billing-related fields, the exposed material could increase risk of phishing, account targeting, payment fraud, identity theft, and social engineering against users, customers, and related business entities. Status Unverified underground forum claim. The actor posted a dataset inventory and field breakdown showing multiple record categories and KYC archive counts. Screenshots Screenshot 1 Screenshot 2

Entities