Alleged data leak of Kreen Indonesia database
Incident Overview
The threat actor "Nerius" claims to have leaked a database belonging to Kreen Indonesia and made it available for download.
According to the threat actor's post, Kreenconnect.com is described as "an online ticketing and voting platform operated by PT Tiket Kreen Nusantara, specializing in event ticket sales and voting systems for contests and events."
The threat actor notes that "Previously, in another post, this data was sold, even though it was free" and references a previous thread where the data was allegedly being sold. The compromised data reportedly includes:
- First name
- Last name
- Phone
- Provider
A data sample was provided showing multiple user records with email addresses, phone numbers, and associated telecommunications providers (primarily Telkomsel). The sample entries show a pattern of Indonesian user data with various email domains including Gmail.com and other providers.
The claim has not been independently verified.
Image Preview
Unlock Full Breach Intelligence
Premium subscribers gain access to PLUS, PRO, or ELITE features, including breach claim URLs and fully unredacted threat and ransomware feeds with no blur, along with leak and breach coverage, 500+ onion and clearnet resources, uptime monitoring, high-resolution watermark-free images, and more.
API Access for Researchers & Security Teams
SOC teams, researchers, and security professionals can integrate Dark Web Informer's threat intelligence directly into their workflows via API. Access real-time breach data, threat feeds, and monitoring capabilities programmatically.
Learn About API AccessDark Web Informer © 2025 | Cyber Threat Intelligence | DarkWebInformer.com
