Introduction
In one of the largest e-commerce data breaches of 2025 so far, rollernco.com has suffered a massive leak of its customer database. A 314MB SQL file surfaced online, exposing sensitive data of over 45,000 users and 1.5 million rows of customer-related information. This breach has alarmed cybersecurity experts and raised questions about the site’s internal security posture.
Breakdown of the Data Leak
What Was Exposed in the SQL Dump?
The leaked data comes from the ps_customer table of rollernco.com, indicating this breach includes sensitive personal information from their PrestaShop platform. The exposed fields include:
- First and last names
- Email addresses
- Passwords (likely hashed, but still sensitive)
- Company and SIRET info (for business customers)
- Birthdays and gender
- IP addresses tied to newsletter signups
- Account creation and update timestamps
- Secure keys and password reset tokens
Format and Scale of the Leak
SQL File Format
The data was formatted as an SQL INSERT INTO statement — a clear sign that a full database dump occurred. This format is often used by attackers for database replication or resale on dark web marketplaces.
File Size and Volume
- File Size: 314MB
- Total Users: ~45,000
- Total Rows: 1.5 million+
This isn’t just a minor leak — it’s an extensive breach with potential ripple effects.
Security Risks and User Impact
Risk of Identity Theft and Fraud
Exposed emails, names, and birthdates can be used for spear phishing, identity theft, and fraudulent account creation. Business-related data (like company names and tax IDs) could also be exploited in B2B scams.
Password Compromise and Credential Stuffing
Even if passwords are hashed, weak or outdated hashing algorithms can be cracked. If users have reused passwords across platforms, attackers could gain access to other accounts.
Privacy Compliance and Legal Concerns
Given rollernco.com’s customer base spans international regions, including the EU, this breach could result in GDPR penalties or investigations by data protection authorities.
Conclusion
The rollernco.com database leak is a serious cybersecurity event in 2025, revealing just how vulnerable even well-known e-commerce platforms can be. With 1.5 million rows of customer data exposed in a public .SQL file, the impact on user trust, legal standing, and brand reputation could be long-lasting.
Suggestion
- For Customers:
- Change your password on rollernco.com and any other site where you’ve used the same credentials.
- Be cautious of emails or messages claiming to be from the company.
- Monitor your accounts and credit reports for unusual activity.
- For Businesses:
- Review your supply chain or vendor relationships tied to rollernco.com.
- Audit your user permissions and credentials.
- For rollernco.com:
- Issue an official breach notification to affected users.
- Reset all passwords and invalidate tokens.
- Work with cybersecurity experts to identify and patch vulnerabilities.