Pax8 customer data exposed after Pax8 breach
Data Leak
Summary
Hide ▲
Show ▼
Pax8 confirmed that it accidentally sent a spreadsheet with internal pricing and Microsoft program data to fewer than 40 UK-based recipients, exposing partner business information tied to about 1,800 partners. The exposure matters because the file included customer organization names, Microsoft SKUs, license counts, and renewal dates that could be misused for competitive targeting or phishing.
Related Happenings
Microsoft Exchange Online email quarantine disruption
Service Disruption
First: 09.02.2026 12:47
Last: 09.02.2026 12:47
Sources 1
About this happening:
Microsoft's **Exchange Online** is facing an ongoing **email delivery disruption** that is **quarantining legitimate messages** and blocking some customers from **sending or recei...
Microsoft Exchange Online email quarantine disruption
Service DisruptionAbout this happening: Microsoft's **Exchange Online** is facing an ongoing **email delivery disruption** that is **quarantining legitimate messages** and blocking some customers from **sending or recei...
Latest development: 18.02.2026 18:26
Microsoft’s preliminary post-incident report for Exchange Online says a logic error in heuristic detection aimed at novel credential phishing campaigns misclassified thousands of legitimate URLs as phishing links, quarantined legitimate emails, blocked links in Microsoft Teams messages, and generated false-positive XDR alerts during the February 5-12 incident window.
Microsoft Office actively exploited security feature bypass (CVE-2026-21509)
Vulnerability
First: 27.01.2026 09:19
Last: 27.01.2026 09:19
Sources 1
About this happening:
**CVE-2026-21509** is a **7.8 CVSS** Microsoft Office **security feature bypass** that was **actively exploited** to bypass **OLE mitigations** and deliver malicious Office files....
Microsoft Office actively exploited security feature bypass (CVE-2026-21509)
VulnerabilityAbout this happening: **CVE-2026-21509** is a **7.8 CVSS** Microsoft Office **security feature bypass** that was **actively exploited** to bypass **OLE mitigations** and deliver malicious Office files....
Microsoft Outlook cloud-backed PST freeze and reopen failure
Service Disruption
First: 25.01.2026 03:59
Last: 25.01.2026 03:59
Sources 1
About this happening:
Microsoft released **out-of-band updates** to fix **Outlook** freezes on **Windows 10**, **Windows 11**, and **Windows Server** after the **January 13, 2026** updates triggered an...
Microsoft Outlook cloud-backed PST freeze and reopen failure
Service DisruptionAbout this happening: Microsoft released **out-of-band updates** to fix **Outlook** freezes on **Windows 10**, **Windows 11**, and **Windows Server** after the **January 13, 2026** updates triggered an...
Microsoft Teams rolls out Brand Impersonation Protection for external call warnings
Security Tool/Service
First: 22.01.2026 18:28
Last: 22.01.2026 18:28
Sources 1
About this happening:
**Microsoft Teams** is adding **Brand Impersonation Protection** to warn users about suspicious **first-time external callers**, reducing social-engineering risk in call flows. Th...
Microsoft Teams rolls out Brand Impersonation Protection for external call warnings
Security Tool/ServiceAbout this happening: **Microsoft Teams** is adding **Brand Impersonation Protection** to warn users about suspicious **first-time external callers**, reducing social-engineering risk in call flows. Th...
PcComponentes customer database leak claim and sample publication
Data Leak
First: 21.01.2026 22:55
Last: 21.01.2026 22:55
Sources 1
About this happening:
A **threat actor named daghetiaw** published a claimed **PcComponentes customer database** and offered it for sale, putting **16.3 million records** at risk. The actor said **500,...
PcComponentes customer database leak claim and sample publication
Data LeakAbout this happening: A **threat actor named daghetiaw** published a claimed **PcComponentes customer database** and offered it for sale, putting **16.3 million records** at risk. The actor said **500,...
Timeline
-
14.01.2026 14:01 2 articles · 4mo ago
Pax8 emails partner spreadsheet to fewer than 40 UK recipients
Initial DisclosureAn EMEA-based strategic account manager at Pax8 mistakenly sent a CSV attachment on 13 January 2026 to fewer than 40 UK-based partners, exposing internal pricing and Microsoft program information tied to about 1,800 partners. The spreadsheet included customer organization names, Microsoft SKUs, license counts, and New Commerce Experience (NCE) renewal dates.
Show sources
- Cloud marketplace Pax8 accidentally exposes data on 1,800 MSP partners — www.bleepingcomputer.com — 14.01.2026 14:01
- Cloud marketplace Pax8 accidentally exposes data on 1,800 MSP partners — www.bleepingcomputer.com — 14.01.2026 14:01
-
14.01.2026 14:01 1 articles · 4mo ago
Pax8 asks recipients to delete exposed spreadsheet
Untyped PhaseShortly after the email was sent on 13 January 2026, Pax8 attempted to recall the message and followed up with recipients asking them to delete the original email and attachment, confirm deletion and non-forwarding, and join 1:1 follow-up calls. Pax8 said the file did not contain personally identifiable information and that Marketplace availability and security controls were not affected.
Show sources
- Cloud marketplace Pax8 accidentally exposes data on 1,800 MSP partners — www.bleepingcomputer.com — 14.01.2026 14:01
-
14.01.2026 14:01 1 articles · 4mo ago
Threat actors seek copies of exposed Pax8 dataset
Campaign Scope UpdateOn 14 January 2026, industry sources said threat actors were approaching some affected MSPs and offering to buy copies of the exposed Pax8 dataset. The dataset could reveal customer portfolios, Microsoft environment size, contract renewal timelines, and pricing tiers, which could support phishing, business email compromise, or extortion.
Show sources
- Cloud marketplace Pax8 accidentally exposes data on 1,800 MSP partners — www.bleepingcomputer.com — 14.01.2026 14:01