// UNCLASSIFIED // CLEARED FOR PUBLIC RELEASE //
FILE BRC-hibpDTG 0600Z
Breach Record

CTT

DISCLOSED 2026-04-26 · STOLEN CREDS · 468,124 RECORDS EXPOSED

In April 2026, data allegedly obtained from CTT, Portugal's national postal service, was posted to a public hacking forum. The data included 468k unique email addresses along with names, phone numbers and parcel tracking numbers which can be used to retrieve the tracking history of the parcel.

The record

What we know

Disclosed
2026-04-26
Attack vector
Stolen Creds
Records exposed
468,124
Domain
ctt.pt
Data classes exposed
Email addressesNamesPhone numbers
Sources

Cited reporting

Similar vector · recent

Other stolen creds breaches on file

This page is the permanent ColdRecon entry for the CTT disclosure. It updates if new public reporting emerges. All tracked breaches →

CTT just lived through this. Your next prospect doesn't have to.

ColdRecon turns every disclosed breach into a daily intelligence brief from the seller's seat — normalized to the factors that move a deal, written in the Handler's voice. Request clearance and the first lands tomorrow at 0600.

Request Clearance →