A threat actor operating with the alias mecrobyte has claimed responsibility for a breach of Jektis Travel, a travel agency based in Tunisia. Posting on a dark web forum, the actor shared that the exposed data includes invoices, payment logs, and reservation system details, along with leaked credentials for the agency’s partner (B2B) login portal.
Screenshots in the post suggest that admin account details may have been compromised, raising serious concerns over the privacy of client transactions and the integrity of partner operations.
CyHawk Africa will continue tracking this incident for further developments. Companies operating in travel and hospitality across the continent are urged to strengthen access controls, encrypt sensitive data, and monitor for leaked credentials to protect both customers and partners.