Threat actor Spirigatito claims to have breached Tanzaniaβs BRELA systems on February 4, 2026, exfiltrating 10.2 million records that include data on approximately 8 million individuals and multiple government and corporate registries. The actor is selling the stolen information via a custom marketplace that breaks the data into six curated databases (including 7.4M TRA TINs and 2.2M individual contact records), priced in crypto credits and offered in CSV/JSON formats. #Spirigatito #BRELA
Keypoints
- Spirigatito alleges a breach of BRELA that yielded 10.2 million records affecting about 8 million people.
- The actor claims the breach occurred on February 4, 2026, and turned to a public marketplace after the government ignored contact attempts.
- Stolen data is organized into six databases: Business Names, Companies, Corporate Shareholders, People, TRA TINs, and Wabunge.
- The marketplace charges crypto-based credits (BTC, ETH, USDT, XMR and 50+ currencies via OxaPay) and offers previews, automatic downloads, and CSV/JSON formats.
- Compromised categories include 7.4M Tax Identification Numbers, 2.2M individual contact records, corporate filings, ownership details, and parliamentary records.
DarkWebInformer.com Providing intel from some of the darkest places on the Dark Web & Clearnet. Breaches, Darknet Markets, Ransomware, Threat Alerts, & more!