Fayyaz Enterprises ERP Database & Source Code Leaked

Fayyaz Enterprises ERP Database and Source Code Leak

On January 18, 2025, a threat actor known as 0mid16B claimed responsibility for a significant data breach impacting Fayyaz Enterprises, a Pakistan-based textile buying and sourcing agency serving prominent European and North American clients. The breach was publicly announced on a darknet forum, where the attacker boasted of exfiltrating 800 GB of databases, documents, and other sensitive files through a supply chain attack on ITG Innovators—a corporate ERP vendor used by Fayyaz Enterprises and hundreds of other clients.

Details of the Breach

The leaked data reportedly includes the ERP database and source code of Fayyaz Enterprises. The exposed information consists of user IDs, employee details, passwords, location data, and corporate records. The screenshot shared by 0mid16B indicates a detailed breakdown of sensitive fields such as:

• User IDs and Codes
• Employee IDs and Passwords
• Branch and Location Details
• Team and Division Information
• Inspection Codes and Associated Images

According to the post, the attack was initiated on January 1, 2025, targeting the ERP system of ITG Innovators. The attacker emphasized that this breach is part of a larger campaign impacting hundreds of corporate ERP clients worldwide, suggesting a systemic vulnerability in ITG’s systems.

Background on Fayyaz Enterprises

Fayyaz Enterprises is a key player in the textile industry, specializing in sourcing and buying services for home textiles and apparel. The company’s client base includes high-profile European and North American retailers, making it a critical node in the global supply chain. Their reliance on ERP systems like those provided by ITG Innovators highlights the interconnected nature of modern business operations—and the risks posed by vulnerabilities in those systems.

0mid16B’s Track Record

The hacker behind this breach, 0mid16B, has been linked to several high-profile cyberattacks in recent months:

• The1 Card Loyalty Program Breach: Exfiltrated data of over 5 million customers from Thailand’s largest loyalty platform.
• DEphoto Breach: Compromised personal and financial information from a UK-based event photography company, including plaintext credit card data.
• Platinum Pharmaceuticals Attack: Stole 612 GB of sensitive data from a leading pharmaceutical firm in Pakistan, including trade secrets and patient records.

These incidents suggest a pattern of targeting industries with significant data troves, exploiting vulnerabilities in enterprise software and security practices.

Implications of the Leak

The Fayyaz Enterprises breach raises critical concerns about supply chain security in the enterprise technology ecosystem. As organizations increasingly rely on third-party vendors for ERP solutions, any vulnerabilities in those systems can have cascading effects on multiple clients. For Fayyaz Enterprises, the exposure of sensitive internal and customer data could lead to reputational damage, loss of client trust, and potential regulatory penalties.

Key Takeaways

1. Supply Chain Attacks Are Growing: This breach underscores the rising trend of targeting third-party vendors to exploit multiple organizations at once.
2. ERP Systems Are High-Value Targets: Centralized platforms managing sensitive corporate data need stronger security protocols and regular audits.
3. Incident Response is Crucial: Companies must prioritize breach detection, containment, and communication to mitigate the fallout from such incidents.