SMSA Express, a Saudi Arabian logistics and shipping company known for providing domestic and international parcel delivery services, has reportedly experienced a significant data breach involving the exposure of more than 1.2 million customer shipment records. According to available information, the compromised dataset has been put up for sale by a threat actor identified as lulzintel. The breach is said to have taken place in April 2026 and affects shipment data associated with both local and international deliveries, raising concerns about the security of sensitive customer information within the logistics sector.
The exposed dataset reportedly contains approximately 1,202,891 shipment records, covering a wide range of operational and customer related details. Among the information included are ticketing data such as ticket numbers, titles, creation dates, and last updated timestamps. In addition, the records contain detailed customer information, including names, customer codes, and addresses, along with primary and alternative phone numbers. The inclusion of such personal data increases the potential risk of misuse, particularly in scenarios involving targeted fraud or unauthorized access attempts.
Further details indicate that the dataset also includes internal operational information such as ticket severity levels, status names, ticket sources, and call types. Employee related data elements are also part of the breach, including employee group categories, assigned groups, and personnel responsible for handling specific cases. Shipment specific identifiers such as Air Waybill numbers are included as well, which could potentially be used to track or manipulate delivery information. The combination of operational and customer data points reflects the depth of the exposure and highlights the potential impact on both customers and internal workflows.
More concerning is the reported presence of highly sensitive personal identification information within the leaked samples. This includes customer national identification numbers, dates of birth, and card expiry details, which significantly increases the risk of identity misuse and financial fraud. The availability of such information in a single dataset makes it particularly valuable for malicious actors seeking to exploit personal data at scale. The incident underscores ongoing challenges in securing large volumes of logistics and customer data, especially as digital systems continue to expand across global supply chain operations.
Follow the SPIN IDG WhatsApp Channel for updates across the Smart Pakistan Insights Network covering all of Pakistan’s technology ecosystem.
