Adumo Data Breach: South African Payment Provider Compromised

Adumo, South Africa’s largest independent payment provider and a subsidiary of Lesaka Technologies, is reportedly compromised with a dark web listing offering its technical database and source code for $7,000. The alleged 14 GB leak of 15,546 files reportedly includes InnerEDGE Docker images and vca-installer, C# POS demo and advanced card-operation source code, Newland SP6x0 Phoenix EMV SDK, PAX A35 firmware and bank certifications, production BIN EMV parameters, and related technical documentation and drivers. #Adumo #InnerEDGE

Keypoints

Adumo is allegedly compromised and sensitive technical data is being offered for sale on a dark web forum for $7,000.
The listing claims 15,546 files totaling 14 GB are included in the breach.
Leaked items reportedly include multiple versions of vca-installer and full InnerEDGE Docker images.
Source code reportedly contains a C# POS demo, advanced card-operation functions (e.g., cardActivate, cardDebit), and the Newland SP6x0 Phoenix EMV SDK with EMV kernel and PIN pad code.
Also listed are PAX A35 firmware (PayDroid 10), bank certifications (Mastercard TIPLOA, Visa CCRT), production BIN EMV parameters, technical documentation, debugging guides, and USB drivers.