Source
https://breachforums.bf/Thread-DATABASE-NoelGifts-com-B2B-Database-22-903-Singapore-Corporate-Records-PMO-DBS-UBS-Banks
companion allegedly hacked as reported by breach Forums with details: hawaii BreachForums Today i have NoelGifts.com database and infrastructure the data breach occurred on february 11 2026 at 03:47:22 when 22903 B2B customer records and 34705 mottle storage files were extracted from compromised AWS infrastructure. Breached by @Montaro PPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPP breach DETAILS PPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPP Target: NoelGifts.com Location: Singapore date Breached: 11 february 2026 03:47:22 GMT+8 Method: AWS SES Misconfiguration + Laravel Admin panel RCE Vector: Exposed Redis cache ’ Laravel deserialization RCE ’ Admin panel takeover PPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPP snipe TIMELINE PPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPP [2026-02-10 23:15:00] - Initial reconnaissance on noelgifts.com infrastructure [2026-02-10 23:42:17] - Discovered exposed Redis instance on internal subnet [2026-02-11 00:08:33] - Redis cache analysis revealed active Laravel sessions [2026-02-11 01:22:45] - PHP deserialization payload executed via Laravel cache poisoning [2026-02-11 02:15:18] - reverse shell established on web server [2026-02-11 02:47:31] - Escalated to www-data discovered .env file with AWS credentials [2026-02-11 03:15:44] - AWS SES console accessed verified domain: noelgifts.com [2026-02-11 03:47:22] - Database dump initiated [2026-02-11 04:12:09] - Cloudflare R2 bucketful sync complete [2026-02-11 05:33:56] - Vultr object storehouse downloaded [2026-02-11 06:18:41] - Payment gateway credentials extracted from coating config PPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPP COMPROMISED INFRASTRUCTURE PPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPP web Application: - URL: - Framework: Laravel 10.x - Server: Apache/2.4.41 - Database: MySQL 8.0.32 cloud Storage: - Cloudflare R2: 10656 objects - Vultr Object Storage: 24049 objects - AWS S3: SES templates and configuration Internal Services: - Redis Cache: 6379/tcp - AWS SES: Verified domain noelgifts.com - Payment Gateways: eNETS MID PayPal Business Braintree PPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPP DATA schema PPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPPP Primary Database: noelgifts_production
About HackNotice and NoelGifts.com B2B Database | 22,903 Singapore Corporate Records (PMO + DBS/UBS Banks)
HackNotice is a service that notices trends and patterns in publically available data so as to identify possible data breaches, leaks, hacks, and other data incidents on behalf of our clients. HackNotice monitors data streams related to breaches, leaks, and hacks and NoelGifts.com B2B Database | 22,903 Singapore Corporate Records (PMO + DBS/UBS Banks) was reported by one of those streams. HackNotice may also have the breach date, hack date, the hacker responsible, the hacked industry, the hacked location, and any other parts of the hack, breach, or leak that HackNotice can report on for the consumers of our product.
If you are a user of NoelGifts.com B2B Database | 22,903 Singapore Corporate Records (PMO + DBS/UBS Banks) their products, services, websites, or applications and you were a client of HackNotice, monitoring for NoelGifts.com B2B Database | 22,903 Singapore Corporate Records (PMO + DBS/UBS Banks) you may have been alerted to this report about NoelGifts.com B2B Database | 22,903 Singapore Corporate Records (PMO + DBS/UBS Banks) . HackNotice is a service that provides data, information, and monitoring that helps our clients recover from and remediate data breaches, hacks, and leaks of their personal information. HackNotice provides a service that helps our clients know what to do about a hack, breach, or leak of their information.
If NoelGifts.com B2B Database | 22,903 Singapore Corporate Records (PMO + DBS/UBS Banks) had a breach of consumer data or a data leak, then there may be additional actions that our clients should accept to protect their digital identity. data breaches, hacks, and leaks often take to and do identity theft, account submit overs, ransomware, spyware, extortion, and malware. account takeovers are often caused by credential reuse, password reuse, easily guessed passwords, and are facilitated by the sharing of billions of credentials and other customer information through data leaks, as the direct result of data breaches and hacks.
HackNotice monitors trends in publically available data that indicates tens of thousands of data breaches each year, along with billions of records from data leaks each year. On behalf of our clients, HackNotice works to monitor for hacks that leading to lower node security and digital identities that hold been exposed and should be considered vulnerable to attack. HackNotice works with clients to discover the extent that digital identities get been exposed and provides remediation suggestions for how to handle each typecast of exposure.
HackNotice monitors the hacker community, which is a network of individuals that apportion data breaches, hacks, leaks, malware, spyware, ransomware, and many other tools that are often used for financial fraud, account take overs, and further breaches and hacks. HackNotice monitors the hacker community specifically for breaches, hacks, and data leaks that suffer consumers. HackNotice applies industry specific knowledge and advanced security practices to monitor for trends that point breaches, hacks, and exposed digital identities.
HackNotice also enables clients to share hack notices with their friend, family, and collogues to help increase cognisance around alleged hacks, breaches, or data leaks. HackNotice works to supply clients with sharable reports to help growth the security of our client�s personal network. The security of the people that our clients interact with directly impacts the level of security of our clients. Increased exposure to accounts that have been taken over by hackers leads to further account take overs through phishing, malware, and other attach techniques.
If you found this plug mark to be helpful, then you may be interested in reading some additional plug notices such as:
c trust, some countries have enacted laws requiring safeguards to be lay in place to protect the secls, e.g. social security numbers. Loss of corporate info such as swap secrets, sensitive coransfer of such information to the information systems of a possibly hostile agency, such as a compet
Defacement https://www.meteorstore.id/
Defacement alsyairiyah.sch.id/waf.php
Defacement https://inkstinctnyc.com/hello.txt
