WisERP Allegedly Targeted: 1.5M U.S. ERP Customer Records Advertised in Auction
WisERP customer database with 1.5M records allegedly auctioned on underground forum.
Summary
A threat actor is claiming to auction a customer database allegedly belonging to WisERP, a smart ERP solutions provider. The database contains 1.5M CSV records including distributor, retailer, contact, and location information. The exposed data could be used for phishing, BEC, identity fraud, and social engineering.
Full text
▣Post details TargetWisERP CountryUnited States SectorERP Software / Business Management ActorzSenior ClaimCustomer database auction Exposure1,531,363 CSV records / 304MB PriceStarting bid $10 ObservedMay 23, 2026 !What is allegedly exposed Distributor names Retailer names IBO and market fields Office and status fields First, middle, and last names Mobile phone numbers Email address fields RAD ID and ETC code fields Address, city, state, and ZIP code records CSV-formatted customer database records ◎Screenshots Screenshot 1 ⚠Potential impact The exposed data could be used for phishing, customer impersonation, business email compromise targeting, unsolicited outreach, identity fraud, and targeted social engineering against WisERP customers and business contacts. iStatus Unverified underground forum claim. The actor posted a CSV sample preview and claims the full customer database is being offered through an auction listing. Want the non-blurred screenshots? Subscribe and check out the threat feed or ransomware feed section. darkwebinformer.com/pricing