📢 Unlock Exclusive Cyber Threat Intelligence
Powered by DarkWebInformer.com
Get foundational access to breach intelligence — track breaches, leaks, and threats in real-time with unfiltered screenshots and expert summaries.
🏢 About Linx Microvix
Linx Microvix is a Brazilian cloud-based ERP platform, specialized in retail management for fashion, accessories, and related segments. Headquartered in São Paulo, Linx supports both physical and online retail chains by offering integrated modules for POS, inventory, financial reporting, tax integration, and CRM.
⚠ Disclaimer
This report includes actual screenshots and/or text that may contain unredacted personally identifiable information (PII).
Dark Web Informer does not endorse unauthorized access or distribution of such content.
This report is for cybersecurity awareness and threat intelligence purposes only.
📌 Overview
On July 29, 2025, threat actor csrakitin claimed to have fully compromised the Linx Microvix ERP system, including databases containing sensitive information about tenants, clients, configuration data, ERP users, application credentials, and third-party integration access.
The actor posted database outputs showing live access to Microsoft SQL Server running Linx systems. The total dataset includes approximately 1 million records, and is being sold for $750 USD. The actor also issued a ransomware-style message demanding $10,000 USD in Bitcoin within 72 hours or the full data set would be publicly exposed.
📊 Key Details
| Attribute | Information |
|---|---|
| Date | 2025-07-29, 13:21:41 PM |
| Threat Actor | csrakitin |
| Victim Country | 🇧🇷 Brazil |
| Industry | Retail Technology / ERP |
| Victim Org. | Linx Microvix |
| Victim Site | Not publicly listed |
| Category | Data Breach |
| Severity | High |
| Network | OpenWeb (DarkForums) |
Subscriber-only content…
![IOC Alert: Lumma Stealer C2 Domain Identified – larpfxs[.]top](/content/images/size/w1304/format/webp/2025/08/23985762398576198764252-1.jpg)
