HEROIC Uncovers 5,322 Enterprise Turkey Customer Records on a Leak Channel

HEROIC's DarkHive scanners discovered a Turkish customer database tied to Enterprise on December 1, 2024, surfacing on a private Telegram leak channel before spreading to open forums. The source, a direct extract from the enterprise.com.tr vehicle rental site, stood out because the file was clean, structured, and recent. Our 400B+ record index confirmed 5,322 unique customers exposed, each with email address, phone number, first name, last name, and birthday.

Why This Database Breach Is Dangerous

The Enterprise leak combines the three data points identity thieves crave: full name, birthday, and phone number. Add an email and an attacker has everything they need to pass knowledge-based authentication at banks, mobile carriers, and government portals, which opens the door to SIM swaps and account takeovers.

What Was Exposed in the Enterprise Breach

• 5,322 unique customer email addresses
• Phone numbers for SMS phishing and SIM swap attempts
• First and last names tied to rental profiles
• Birthdays useful for identity verification bypass

Why This Matters

Rental records reveal who travels, when, and how. Combined with a birthday, that context lets attackers craft travel-themed phishing around upcoming trips or craft fake loyalty refund scams that look legitimate. Turkish speakers in the dataset face localized social engineering tuned to recent rental activity.

How Database Breaches Like Enterprise Happen

Regional corporate sites often run on franchise-operated infrastructure with patch cycles that lag the parent brand. A forgotten test environment, a leaked admin credential, or a vulnerable plugin in the customer portal can expose the full booking table. Telegram leak channels are increasingly the first stop before the data hits wider forums.

Check If You Are Affected

Use HEROIC's free 400B+ record breach scanner to check whether your email appears in the Enterprise Turkey breach. You will see every exposure tied to your identity within seconds and get step-by-step remediation advice for phishing, SIM swap prevention, and identity monitoring.