Threat actor offers 413,000 home records

A threat actor on June 2 advertised what it said was a Baanlaesuan.com database for sale, according to a post circulated on X and a cyber-intelligence alert published the same day. The listing said the dataset contained about 413,000 records tied to the Thai home and garden platform and included customer contact details and business financial information. Baanlaesuan is a Thai home-improvement and lifestyle site that says it is operated by AME Imaginative Co. Ltd., and its website carries Amarin group branding and privacy materials. ### What exactly was offered for sale? The June 2 listing described the material as a Baanlaesuan.com database and said it included names, email addresses, phone numbers and physical addresses, according to the cyber alert and the social-media post that amplified it. The same sources said the seller also claimed the package contained company revenue, profit and capital figures. (brinztech.com) The 413,000-record figure comes from the seller’s own description and has not been independently verified in the source material reviewed here. No public filing, breach notice or statement from Baanlaesuan or Amarin that was visible in the reviewed materials on June 2 confirmed the count or authenticated the sample. (brinztech.com) ### What is Baanlaesuan.com? Baanlaesuan.com presents itself as a Thai home-and-garden platform covering houses, gardens, maintenance ideas, plant content, arts and crafts, news updates and the Baanlaesuan Fair program. The site footer says “© COPYRIGHT 2026 AME IMAGINATIVE COMPANY LIMITED.” AME Imaginative is identified on Baanlaesuan pages as the operating company, while the site’s privacy-policy page says the website is provided by Amarin Corporations Public Company Limited and affiliated companies in the Amarin group. (brinztech.com) Contact information surfaced on Baanlaesuan pages includes baanlaesuanweb@amarin.co.th and a Bangkok telephone number. ### Why do the claimed fields matter? (baanlaesuan.com) Names, phone numbers, email addresses and street addresses are the kinds of fields commonly used in phishing, impersonation and account-targeting campaigns, according to the types of risks discussed in posts reacting to the listing on X. The same discussion focused on the possibility of fraud if the data is authentic and current. (baanlaesuan.com) Revenue, profit and capital figures would add a business-profiling layer if those records are genuine. The Brinztech alert described the exposure as involving corporate financial metrics and partner registries, though that characterization came from the security firm’s analysis of the criminal-market post rather than from the company. (brinztech.com) ### What has the company said publicly? Baanlaesuan’s public website, as reviewed on June 2, showed no visible breach notice on the pages surfaced in search results. The site did show a privacy-policy page and contact channels for support and issue reporting. Amarin’s corporate materials available online include a personal-data-protection policy that references Thailand’s Personal Data Protection Act B.E. 2562 (2019) and says the company monitors access to personal data and develops storage systems to prevent leaks and unauthorized use. (brinztech.com) Those documents are policy statements, not confirmation of this incident. (baanlaesuan.com) ### What should readers watch for next? June 2 is the date attached to both the underground-market alert and the X post that brought wider attention to the claim. The next concrete step is whether Baanlaesuan, AME Imaginative or Amarin issues a public statement, user notice or regulator-facing disclosure identifying what was affected and whether the 413,000-record claim is accurate. (amarin.co.th) Baanlaesuan’s site lists baanlaesuanweb@amarin.co.th for contact and links to its privacy materials, which are the most visible public channels tied to the platform in the reviewed sources. Any official clarification would likely appear through those company channels or on the site’s own pages. (baanlaesuan.com) (brinztech.com)