A new post on a dark web forum has revealed a data breach affecting Ghana’s insurance sector, with customer records from Priority Insurance Company Limited being exposed. The leak was shared by a threat actor using the alias 0x0day, who claims that the compromised data was extracted and leaked in 2025.
The attacker posted a sample of the exposed records, which includes sensitive personal information such as:
- Full name of policyholders
- Phone numbers
- Insurance policy numbers
- Branch and company IDs
- Customer type and UUID references
The sample data references an individual customer by name, phone number, and insurance details—though other fields like ID card type, national ID, email, and residential address appear to be empty or redacted in the sample.
A link to download the full dataset was also included in the post, though hidden from general view. This kind of exposure can pose serious risks to individuals, including identity theft, targeted phishing attacks, and unauthorized use of personal data.