Salama Islamic Arab Insurance Company, one of the largest takaful insurance providers in the United Arab Emirates, has reportedly become the target of a significant data breach, with tens of thousands of customer records allegedly being offered for sale on a well known cybercrime forum. The listing, attributed to a threat actor using the alias sexybroker, claims that a dataset containing sensitive customer and broker information is being sold for as little as 200 dollars. The development raises concerns about data protection practices within the insurance sector and the growing risks posed by unauthorized access to enterprise systems.
According to details shared in the listing, the original breach is said to have involved approximately 500000 records. However, the threat actor claims to have filtered the dataset to around 80000 unique entries after removing duplicate and incomplete records. The actor also indicated that access to the compromised system was lost early, suggesting that the extracted data represents only a portion of what may have initially been accessible. Despite this limitation, the volume and nature of the exposed information highlight the potential impact on individuals whose data may now be circulating within underground marketplaces.
The dataset is described as containing customer relationship management information, including payment records, invoices, and detailed profiles of both customers and brokers. Among the exposed fields are UAE identification card numbers, full names, email addresses, phone numbers, and physical addresses, along with financial details such as paid amounts. Sample records and CRM entries have reportedly been shared within the listing to demonstrate authenticity, a common tactic used by threat actors to attract buyers and validate claims. The presence of such comprehensive personal and financial data increases the risk of identity misuse, targeted fraud, and phishing attacks against affected individuals.
Incidents involving the sale of corporate data on underground forums continue to reflect broader trends in cybercrime where attackers monetize unauthorized access rather than immediately exploiting it. The relatively low asking price for a dataset of this size suggests an attempt to enable rapid distribution or resale among multiple buyers. For organizations operating in sectors that handle sensitive personal and financial data, such developments reinforce the importance of maintaining strict access controls, monitoring internal systems for unusual activity, and ensuring timely detection of potential breaches. The reported case involving Salama highlights how even partial data exposure can have wide ranging implications for customer trust and regulatory scrutiny within the region’s insurance industry.
Follow the SPIN IDG WhatsApp Channel for updates across the Smart Pakistan Insights Network covering all of Pakistan’s technology ecosystem.
