A threat actor has claimed responsibility for an alleged breach involving Happipad, a Canadian housing platform focused on affordable housing and roommate matching services.
According to a forum post published on May 21, the actor claims to have obtained a customer database containing 12,178 records allegedly tied to Happipad users following a May 2026 intrusion.
The post was published by the same threat actor previously linked to alleged breaches involving VentureYours, Peet’s Coffee, ReferralRock, and Reltio.
Housing preferences and disability-related fields allegedly exposed
The threat actor claims the leaked database contains user profile information associated with Happipad’s housing and roommate matching platform.
According to the listing, allegedly exposed fields include:
- Full names
- Email addresses
- Phone numbers
- Gender information
- City and province details
- Postal codes
- Registration dates
- Profile verification status
- Housing lifestyle preferences
- Noise tolerance settings
- Cleaning and cooking frequency preferences
- Disability indicators and descriptions
- User profile descriptions
The actor also published sample CSV records allegedly showing roommate preference data, work schedules, accessibility-related information, and personal descriptions submitted by platform users.
BreachNews is not reproducing the exposed records due to the sensitive nature of the alleged data.
Affordable housing platform targeted
Happipad describes itself as a Canadian social enterprise focused on affordable housing and home sharing services. The platform helps match renters, students, seniors, and homeowners seeking shared housing arrangements.
Because the platform collects personal lifestyle preferences and accessibility-related information to facilitate housing matches, exposure of user profiles could create elevated privacy concerns for affected individuals.
The forum post specifically referenced disability-related profile fields and housing preference information as part of the alleged dataset.
At time of publication, Happipad had not issued any public statement regarding the claims.
BreachNews has not independently verified the authenticity of the alleged dataset or confirmed whether Happipad systems were compromised.
