A database allegedly belonging to U.S. real estate investment platform Streitwise has been offered for sale on a cybercrime forum, with the seller claiming it contains 120,272 user records.
The listing, posted on June 30, claims the database is dated June 28, 2026 and contains three fields: email addresses, first names, and last names. The seller is asking $100 for the dataset and shared a small public sample in an apparent effort to support the claim.
Limited sample shared publicly
The publicly available sample contains only email addresses, first names, and last names. It does not include passwords, phone numbers, mailing addresses, financial information, or other account details.
Among the sample records is one email address using the @streitwise.com domain alongside numerous consumer email addresses from providers including Shaw, Telus, Eastlink, Sympatico, and Hotmail. On its own, the presence of an internal email address does not verify the authenticity of the dataset or establish that it originated from Streitwise.
If legitimate, even a dataset limited to names and email addresses could still be valuable to cybercriminals for phishing campaigns, credential stuffing attempts using reused passwords from unrelated breaches, or targeted social engineering against investors and account holders. Financial services organizations continue to face persistent cyber threats, as demonstrated by recent incidents including the NAIC cyberattack linked to Oracle PeopleSoft vulnerabilities, although no connection between that incident and this alleged data sale has been established.
Company has not commented
BreachNews has not independently verified the authenticity of the dataset or the seller’s claims. Streitwise had not issued any public statement regarding the alleged incident at the time of publication.
BreachNews will post an update if Streitwise confirms the incident, disputes the claims, or additional evidence becomes available.












