SWIFTA.COM, a Nigerian fintech and payment service provider, has allegedly suffered a data breach exposing sensitive information linked to its administrators, agents, and partners. A threat actor posted the alleged database dump which contains 18,917 records, on a dark web forum.
According to the threat actor’s post, the compromised database includes:
- User Information: Email addresses, phone numbers, mobile device IDs
- Credentials: Hashed passwords, API keys, Firebase tokens
- Authorization Data: Authorization pins, user roles (Admin, Agent, Partner)
- System Metadata: Status, role ID, created/updated dates, login timestamps
This exposure poses a significant risk to SWIFTA.COM’s payment ecosystem, as leaked API keys and authorization pins could enable fraudsters to access sensitive systems, impersonate users, or launch further attacks. Admin and partner accounts are especially concerning, given their elevated privileges.
If confirmed, this incident underscores the persistent targeting of African fintech companies by cybercriminals motivated by financial gain. The compromise of administrator and partner credentials could escalate into large-scale fraud, phishing campaigns, or further attacks on associated financial institutions.
Disclaimer: This report is based on alleged threat actor claims. CyHawk Africa does not verify or confirm the authenticity of such claims and bears no intent to defame. Content is for awareness and defensive purposes only.