A threat actor using the alias GhostCrawl has claimed responsibility for compromising the Egyptian cybersecurity company Team4Security (team4security.com). The attacker announced on a dark web forum that they had accessed sensitive files and secrets allegedly hidden by the firm and issued a ransom demand of $2,350.
According to the post, GhostCrawl warned that if payment is not made within 24 hours, they will begin exposing every document, vulnerability, and hidden detail in what they described as a “series of shocking revelations.” The threat actor threatened to release the data publicly, as well as share it with rival entities in the industry.
The message was framed dramatically, with countdown warnings, emphasizing that “every second that passes, every hidden document, every undeniable truth… is about to be exposed.” A Telegram channel linked to GhostCrawl was also shared, where updates about the alleged leak may be posted.
This development is particularly notable as it targets a cybersecurity service provider, a company meant to safeguard clients against such attacks. If confirmed, the breach could erode trust in local cybersecurity firms, particularly within Egypt’s growing tech sector. It also highlights the rising trend of extortion-driven data leaks, where financial motives are paired with reputational damage campaigns.