A threat actor has posted what they claim to be a dataset attributed to a Nigerian digital services platform. The post advertises approximately 65,000 records, allegedly extracted from the platform. The actor states that the breach occurred in 2025 and is offering samples of the data to potential buyers.
According to the dark web post, the dataset appears to include:
- Names
- Emails
- Phone numbers
- Location data
- Image file paths
- Additional metadata tied to platform users
CyHawk has not independently validated the authenticity or completeness of the posted samples.
If legitimate, the exposed information could lead to:
- Targeted phishing
- Account takeover attempts
- Identity fraud
- Social engineering targeting customers
- Fraud against individuals using reused credentials
Disclaimer
This report is based on publicly visible posts from cybercriminal forums.
CyHawk has not confirmed the validity of the claimed data and does not distribute, host, or facilitate access to leaked information.