A threat actor has claimed responsibility for an alleged breach involving WisERP, a U.S.-based enterprise resource planning (ERP) platform, with more than 1.5 million customer records purportedly exposed online.
In a forum post published on May 23, the actor claimed to possess a full customer database allegedly stolen from WisERP following a cyber intrusion earlier this month.
WisERP markets itself as a smart ERP platform for modern businesses, offering workflow, distributor, retailer, and operational management solutions.
According to the listing, the allegedly stolen dataset contains 1,531,363 CSV records totaling approximately 304 MB.
The threat actor claimed the exposed information includes distributor names, retailer names, office identifiers, first and last names, mobile phone numbers, email addresses, physical addresses, ZIP codes, account status information, and registration timestamps.
The post also included a large sample of purported customer records and stated the data was being auctioned publicly with a starting bid of $10.
Threat actor continues daily breach claims
The WisERP listing is the latest in a rapid series of alleged breaches posted by the same threat actor over the past week.
BreachNews previously reported on claims involving Hillpointe, Happipad, Reltio, Peet’s Coffee, ReferralRock, and VentureYours, all allegedly tied to the same forum actor.
The actor has now published at least 1 new alleged breach claim per day across multiple industries and countries, primarily targeting customer databases and cloud-hosted business platforms.
While some listings have included structured samples and detailed record counts, none of the recent claims have been independently verified by BreachNews.
At time of publication, WisERP had not issued any public statement regarding the alleged breach.
BreachNews will continue monitoring for confirmation, regulatory disclosures, or additional evidence supporting the claims.
