A threat actor known as Sorb is selling a database attributed to Taiseer (taiseer.co) containing 71,000 user records, including bcrypt password hashes, 27,000 national ID scans, emails, phone numbers, FCM push tokens, and per-user gold balances. The listing is priced at $400 with escrow and claims ongoing access, creating high risk of account takeover, identity theft, KYC-bypass, and targeted fraud against high-balance Egyptian gold investors. #Sorb #Taiseer
Keypoints
- Sorb is selling a Taiseer database of 71,000 user records including 71,000 unique emails and phone numbers.
- The breach includes 27,000 scanned national ID cards alongside bcrypt password hashes tied to accounts.
- Exposed fields contain FCM push tokens, detailed KYC records, gold balances, transaction history, and admin flags.
- The dataset is listed for $400 USD with escrow and the seller indicates ongoing access to the source environment.
- The combination of hashes, ID scans, and gold balances enables credential stuffing, hash cracking, KYC-bypass, and targeted fraud on high-value accounts.
DarkWebInformer.com Providing intel from some of the darkest places on the Dark Web & Clearnet. Breaches, Darknet Markets, Ransomware, Threat Alerts, & more!