A threat actor using the alias Chucky_BF, has leaked a massive database allegedly belonging to Neweracom.ma, a Moroccan company in the telecom and infrastructure sector. The breach allegedly contains 476,303 records, and exposes highly sensitive corporate and personal data.
The dump, described as an ERP system breach, highlights the growing trend of attacks targeting centralized platforms that consolidate HR, financial, and operational functions.
The database reportedly contains:
- Employee HR records: names, emails, CNSS (social security) numbers, phone numbers, salaries, and CIN (national ID) scans.
- Client & project data: contracts, invoices, payment terms, and locations.
- User credentials: email addresses, password reset tokens, bcrypt hashes.
- Operational data: budgets, procurement records, financial transactions, and attendance logs.
A sample provided by the actor includes employee details such as names, emails, phone numbers, and national identifiers, raising serious concerns about identity theft and fraud risks.
Threat Implications
The exposure of CIN scans and CNSS numbers could have long-lasting consequences for affected individuals, enabling:
- Identity theft and fraudulent registrations.
- Social engineering and phishing attacks leveraging corporate and HR details.
- Financial fraud through stolen contracts and invoices.
- Credential-based attacks if employees reused passwords elsewhere.
The inclusion of client contracts and payment data also threatens Neweracom’s business integrity, potentially damaging customer trust and compliance standing.
This breach underscores the high-value risk of ERP/CRM platforms in Africa. As more organizations consolidate HR, finance, and operations into single systems, they become prime targets for cybercriminals who exploit them as a one-stop shop for sensitive data.
Companies must prioritize:
- Regular security audits of ERP/CRM systems.
- Strong access controls and multi-factor authentication.
- Network segmentation to limit lateral movement.
- Encryption and monitoring of sensitive HR and financial data.