A leaked Pet Stop Link user table indexed by leaksear.ch contains 10,048 customer and dealer records, including contact details, bcrypt-hashed passwords, reset and session token fields, and device metadata; the metadata does not list a breach date (leaksear.ch metadata). Pet Stop Link is a connected dog-fence app and web platform for customers and dealers, with Pet Stop listing the Link mobile app for iOS and Android and Rise Marketing describing a Bluetooth and Internet-enabled product line with customer, dealer, and administrator account roles (petstop.com, rise.co).
What happened
Leaksear.ch indexed the dataset on May 24, 2026 as a Pet Stop Link customer and dealer user table. The metadata identifies the affected table, record count, and field types, but does not identify the source of exposure, initial compromise date, or whether the data came from Pet Stop, a service provider, a misconfiguration, ransomware, scraping, or another route (leaksear.ch metadata).
Public materials show that Link is more than a basic consumer app. Rise Marketing says it built a web platform and custom API for communication between Pet Stop, dealers, customers, and the Bluetooth collar, and that the platform lets customers manage and monitor systems, dealers manage customers and settings, and administrators manage users and systems (rise.co). Google Play describes Pet Stop Link as a phone-connected pet-fence app that can monitor pet behavior, send notifications, and give both users and Pet Stop dealers access to real-time information about collar charging and settings (play.google.com).
What data was exposed
According to leaksear.ch metadata, the indexed table includes email addresses, full names, phone numbers, US and Canada postal addresses, countries, and bcrypt-hashed passwords. It also includes reset and session token fields, device manufacturer and model, operating system information, app version, last-active values, dealer IDs, account status, account type, and internal user IDs (leaksear.ch metadata).
The searchable pivots in leaksear.ch are address, country, email, hashed password, name, and phone. The other fields are stored as record context rather than direct search pivots (leaksear.ch metadata).
Why this matters
Contact details plus postal addresses can support targeted phishing, account-recovery fraud, and social engineering. The dealer and account-type fields add context that could be used to impersonate local service providers or support staff, especially because Link is designed to connect customers, dealers, and collar settings (rise.co, play.google.com). Individuals should be alert for Pet Stop Link-themed emails, texts, or calls about account resets, service visits, collar settings, or billing, and should change any reused password tied to the app. Dealers and security teams should watch for credential-stuffing attempts, help-desk impersonation, and suspicious account-reset activity.
Check your exposure
Vetted researchers and incident-response teams can request access or sign in if they already have access to check this dataset. Searchable pivots for this leak include address, country, email, hashed password, name, and phone.