Skip to content
Tips
Support
Sign In Subscribe
Leaks

US Electronics Wholesaler Flawireless Allegedly Breached, Customer and Order Database Leaked

 and  Dark Web Informer
10 min read
Breach Report United States flagUnited States Retail

US Electronics Wholesaler Flawireless Allegedly Breached, Customer and Order Database Leaked

A threat actor using the alias 0xSec has posted what they describe as the database of Flawireless, a US-based wholesaler of mobile phone accessories and refurbished electronics that also trades as Techy Extra. The leak appears to be a full export of the company's e-commerce and order-management system, spread across several CSV files: roughly 57,121 order records, 3,251 invoices, 2,066 shipments, a 14,245-item product catalog, and a small set of discount codes. Per the samples, the customer-facing tables include names, company names and VAT numbers, full billing and shipping addresses, email addresses, phone and mobile numbers, and order, invoice, and payment metadata such as amounts, tax, and payment provider. No passwords or full payment-card numbers appear in the samples. The dataset's authenticity and scope are unverified.

Data57K+ orders
AccessPoints-gated
CountryUnited States flagUSA
Actor0xSec

Post details

TargetFlawireless / Techy Extra (US wholesaler)
CountryUnited States flagUnited States
SectorRetail / E-commerce (wholesale)
ClaimFull e-commerce DB leaked (multiple CSVs)
DataCustomer contact, addresses, order history
FilesOrders 57.1K, invoices 3.3K, shipments 2.1K
ObservedJun 28, 2026
Actor0xSec

!Allegedly included

  • ~57,121 order records
  • 3,251 invoices, 2,066 shipments
  • Names, company names & VAT
  • Billing & shipping addresses
  • Emails, phones & mobiles
  • Order, invoice & payment metadata
  • 14,245-item product catalog
  • 6 discount codes

Screenshot(s)

Flawireless US alleged leak Screenshot 1 Screenshot 1 Redacted preview Flawireless US alleged leak Screenshot 2 Screenshot 2 Redacted preview

Potential impact

This is a full e-commerce and order-management export rather than a simple contact list, so its main value to an attacker is the pairing of customer identities with detailed transaction history. The customer-facing tables reportedly combine names, company names, and VAT numbers with full billing and shipping addresses, emails, and phone numbers, alongside order and invoice details such as products purchased, amounts, tax, and payment provider. Because many of the customers appear to be businesses and resellers, the strongest risk is convincing, well-informed phishing and business-email-compromise or invoice-fraud attempts that reference real orders, amounts, and shipping details. No passwords or full payment-card numbers appear in the samples, which limits direct account or card takeover, but the transaction context still supports targeted social engineering and fraud. No customer records, names, company details, addresses, emails, phone numbers, or download links are reproduced here. The scope and authenticity are unverified.

iStatus

Unverified

Sample rows and a download behind a points paywall were posted to a forum; the sample records, customer identities, and download links are not reproduced here. The actor describes the data as a full leak of the company's database. The claim has not been independently confirmed and Flawireless / Techy Extra has not publicly addressed it.

Want the non-redacted screenshots? Paid subscribers get all of the claim details and unredacted screenshots. Check out the threat feed or ransomware feed (whichever applies to this post), then after subscribing, search there for this alert to view the unredacted version. View pricing →

DARK WEB INFORMER - THREAT INTELLIGENCE

Related

Latest