IntelBroker shared snippets of data from the breach of Lulu Hypermarket, threatening a full database leak at a future date. Credit: Lightspring / Shutterstock Lulu Hypermarket, a prominent retail chain headquartered in Abu Dhabi, UAE, has allegedly experienced a significant data breach involving the personal details of at least 196,000 customers. The IntelBroker hackers have claimed responsibility for this attack, initially leaking the personal details of a few customers on BreachForums to establish credibility. “Hello BreachForums Community! Today, I have uploaded the LuluMarket database for you to download. Thanks for reading and enjoy!,” IntelBroker reportedly wrote on BreachForums. “In July 2024, Lulu Hypermarket suffered a data breach that exposed the information of up to 196,000 individuals.” Lulu Hypermarket has yet to confirm and provide specific details on the types of data affected by the breach. Leaked details on BreachForums include email addresses and phone numbers. Release of full database promised Apart from the data currently leaked on BreachForums, the threat actor claimed they have access to the full database, presumably with additional sensitive columns, which they plan to release in the future. “I have the full database, including the millions of users and orders that I’m currently importing as a .bacpac file so I can release it at a later date,” the hackers added as a note on BreachForums. While the hackers have yet to disclose if highly sensitive financial or payment information was compromised, the already leaked information could still pose significant risks. Stolen data could be used for ransom demands, sold to the highest bidder, or leaked in full, potentially leading to phishing attacks and identity theft. Lulu Group International, owned by businessman Yusuff Ali MA, has been contacted for comments but is yet to respond. Notorious hacker gang IntelBroker hackers have a history of targeting various entities, including General Electric, Europol, Tech in Asia, Zscaler, and more. Their track record includes breaches of major organizations such as Home Depot, Facebook Marketplace, and Space-Eyes. The notorious hacker group is mostly seen active on BreachForums, a revived version of the infamous Raid Forum, the popular leak site for selling stolen data. BreachForums, along with its related Telegram channels, was recently seized by a global law enforcement operation wherein the US FBI had taken control of channels belonging to the forum’s administrators, including Baphomet and ShinyHunters. The forum was later revived under the administration of ShinyHunters. Intebroker remains highly active on the forum, having claimed a number of breaches just after its revival. Lulu Customers are advised to stay vigilant against potential scams and identity theft. More data breach news: Hacker allegedly paid $370,000 ransom to delete stolen AT&T data Mobile surveillance software firm mSpy suffers data breach Evolve data breach impacted upward of 7.64 million consumers SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe