Badr Airlines, one of the few remaining active carriers in Sudan operating domestic and humanitarian routes amidst the ongoing civil war, has allegedly been compromised. A threat actor has claimed responsibility for exfiltrating sensitive internal documentation from the airline’s servers. The leak reportedly exposes the operational backbone of the Khartoum-based carrier, which continues to fly Boeing 737s despite facing heavy international sanctions and an EU ban. The actor describes the dataset as “entirely authentic” and sourced directly from internal servers, with document revisions dating as recently as June and July 2025.
According to the actor, the 2.21 GB dataset includes 399 controlled PDF files, many featuring physical and digital copy numbers. The allegedly compromised data includes:
-
Flight Dispatch Manual (FDM) Rev 07: Complete dispatch procedures, ETOPS/EDTO protocols, and emergency communication structures.
-
Operations Manuals (Parts A, B, D): Over 1,400 pages covering operational policies, pilot training, and Boeing 737 technical procedures.
-
Company Security Program Manual (CSPM) Rev 09: Sensitive details regarding the airline’s security program and threat response policies.
-
Safety Management System (SMS) Rev 04: Documentation on safety structures and executive responsibilities.
-
Minimum Equipment Lists (MEL): Fleet data including specific aircraft registrations and serial numbers.
-
Ground Handling & SOP Manuals: Standard Operating Procedures for B737 flights and ground handling operations.
-
Station Personnel Data: Complete contact details for the Rwanda (Kigali) station, including the Station Manager’s name, email, and phone number.
