Cybercrime monitoring sources have reported circulating claims on underground forums regarding an alleged data leak involving Elaraby Group, one of Egypt’s largest home appliance and electronics companies.
According to the claims, an exposed database of approximately 25 GB is being advertised by a threat actor. The allegedly compromised data is said to include around 3 million customer records, 2 million address records, and 3 million sales order address records, containing customer, order, and delivery-related information.
At this stage, there is no official confirmation or independent verification that the alleged dataset is genuine or that a confirmed breach has occurred. However, reports indicate that a download link was shared on an underground forum, which may increase the risk of wider distribution if the claims are validated.
Preliminary analysis of the circulating information suggests that the alleged dataset primarily includes personal and transactional details such as names, contact information, addresses, and order history. There is no indication in the claims of direct exposure of banking data or credit card information.
If confirmed, such information could significantly increase the risk of targeted cyber threats, including phishing campaigns, scam calls, identity fraud, and highly personalized social engineering attacks. Attackers often exploit leaked personal data to impersonate trusted entities and manipulate victims into revealing sensitive credentials such as OTP codes.
Organizations and individuals are advised to remain vigilant against unsolicited communications, avoid sharing OTP or verification codes over phone calls, and verify any suspicious requests through official customer service channels.
Cybersecurity awareness remains critical, as modern attacks increasingly rely not only on technical exploitation but also on manipulation of human trust.