A threat actor claims to have breached Armalife, one of Turkey’s leading textile companies. The actor is attempting to sell a comprehensive dataset that allegedly includes not only sensitive customer and financial information but also the company’s internal infrastructure data and application source code.
According to the actor, the 10GB data dump contains an 8GB database and a wide range of sensitive information. The allegedly exfiltrated data includes RDP passwords, AnyDesk configurations, server configurations, CRM & Back Office source code, user information, revenue ratios, branch efficiency reports, invoice details, e-invoice information, POS information, accounting and financial transactions, and correspondence with the Revenue Administration.
