- Pax8 employee mistakenly sent spreadsheet exposing data for around 1,800 customers
- The file contained 56,000 entries with organization names, SKUs, licenses and renewal dates
- Pax8 requested removal; criminals allegedly tried to buy leaked list
Pax8, a cloud commerce marketplace for managed service providers (MSPs), said it inadvertently exposed sensitive data on about 1,800 of its customers after an employee mistakenly sent an email with an attachment.
The company confirmed the news in a follow-up email informing affected businesses of the incident.
“Earlier today, on January 13, 2026, a Pax8 employee mistakenly sent an email with a spreadsheet attachment to fewer than 40 UK-based partners,” the email said. “The attachment did not contain personally identifiable information. However, the file included limited internal business information reflecting pricing for your Pax8 and management of certain Microsoft programs.”
Millions of damages
The email, titled “Potential Business Premium Upgrade Tactic to Save Money,” contained information about internal pricing and Microsoft programs primarily affecting UK businesses and one company located in Canada.
After contacting a few recipients, BeepComputer I learned that the attached CSV file contained customer organization names, Microsoft SKUs, license counts, and New Commerce Experience (NCE) renewal dates.
There were more than 56,000 entries in the document, according to the publication, including
Partner name and ID
Customer Name and ID
Supplier name and product name
Gross and net reservations
Currency Total quantity
Territory
Account owner
Date of availability
Canceled book date
Postal Code
Transaction type
End date of the duration of the commitment
Pax8 said the leak would not impact the availability or security controls of the Marketplace and added that it had contacted all recipients and requested that the emails be deleted and no longer distributed.
It has also been reported that cybercriminals are also contacting recipients in an attempt to purchase the list. So far, the information has not leaked onto the dark web, so it can be assumed that no one has sold yet.
Pax8 currently has more than 47,000 partners worldwide and operates in 18 countries.
The best antivirus for every budget
Follow TechRadar on Google News And add us as your favorite source to get our news, reviews and expert opinions in your feeds. Make sure to click the Follow button!
And of course you can too follow TechRadar on TikTok for news, reviews, unboxings in video form and receive regular updates from us on WhatsApp Also.
