// UNCLASSIFIED // CLEARED FOR PUBLIC RELEASE //
FILE BRC-newsDTG 0600Z
ColdRecon / Breach Radar / Ascentis
Breach Record

Ascentis

DISCLOSED 2023-11-16 · MISCONFIG · 330,000 RECORDS EXPOSED

Loyalty marketing agency Ascentis was fined S$10,000 by Singapore's PDPC for a data leak that exposed personal information of about 330,000 Starbucks Singapore customers. The exposed data included names, email addresses, phone numbers, dates of birth, and membership details. The breach occurred due to an unsecured API endpoint that allowed unauthorized access.

The record

What we know

Disclosed
2023-11-16
Attack vector
Misconfig
Sector
Marketing
Country
Singapore
Records exposed
330,000
Data classes exposed
namesemail addressesphone numbersdates of birthmembership details
Sources

Cited reporting

Similar vector · recent

Other misconfig breaches on file

This page is the permanent ColdRecon entry for the Ascentis disclosure. It updates if new public reporting emerges. All tracked breaches →

Ascentis just lived through this. Your next prospect doesn't have to.

ColdRecon turns every disclosed breach into a daily intelligence brief from the seller's seat — normalized to the factors that move a deal, written in the Handler's voice. Request clearance and the first lands tomorrow at 0600.

Request Clearance →