Note: No files or stolen information are hosted or disclosed in this report. Any legal issues relating to the content of the files should be directed at the attackers directly. This summary is solely for informational purposes.
Babuk Locker 2.0 Affiliate Program – Babuk2
Threat Actor: Babuk2
Victim: Babuk Locker 2.0 Affiliate Program
Details of Breach: The leak page outlines the recruitment strategy for the Babuk Locker 2.0 affiliate program, detailing operational guidelines for potential partners. It emphasizes the earning potential through ransom payments while maintaining operational security. The program claims stability over three years, inviting affiliates to engage in diverse attacks while prohibiting actions against critical infrastructure.
Best Telecom Laos – Akira
Threat Actor: Akira
Victim: Best Telecom Laos
Details of Breach: The leak page reveals a significant data breach involving sensitive corporate documents from the telecommunications company, which has been linked to potential risks for customer and employee data.
CNQC – Akira
Threat Actor: Akira
Victim: CNQC
Details of Breach: The ransomware leak page for CNQC indicates a serious compromise involving over 90 GB of sensitive corporate documents. The data includes personal information, financial records, and internal correspondence, posing significant risks to privacy and operational integrity within the construction industry.
India’s Telecommunication Network – Babuk2
Threat Actor: Babuk2
Victim: India’s Telecommunication Network
Details of Breach: The leak page shows a major breach affecting India’s telecommunications sector, with potential exposure of sensitive operational data. This incident raises concerns about the security of critical infrastructure and the implications for consumers and stakeholders in the industry.
Peerless Food Equipment – Akira
Threat Actor: Akira
Victim: Peerless Food Equipment
Details of Breach: The ransomware leak page indicates a significant data breach affecting Peerless Food Equipment, with over 200 GB of sensitive corporate documents exposed. The compromised data includes financial information, employee details, and health condition certificates, highlighting severe risks to privacy and security.
Cahokia CUSD 187 School District – Qilin
Threat Actor: Qilin
Victim: Cahokia CUSD 187 School District
Details of Breach: The leak page for Cahokia CUSD 187 indicates a serious security breach affecting the educational institution. The incident has led to the exposure of confidential data relevant to the school district, raising considerable concerns regarding student and staff privacy.
Extreme Performance – Funksec
Threat Actor: Funksec
Victim: extremeperformance.com
Details of Breach: The ransomware leak page for ExtremePerformance.com reveals a potential data breach affecting the company’s operations in the high-performance automotive sector. While specific details regarding the data compromised are minimal, the focus on corporate vulnerabilities is clear.
Hi Tek Group – Babuk2
Threat Actor: Babuk2
Victim: Hi Tek Group
Details of Breach: The ransomware leak page discusses a significant data breach involving sensitive corporate documents, including personal and financial information.
Industrial Acceptance Corporation – Akira
Threat Actor: Akira
Victim: Industrial Acceptance Corporation
Details of Breach: The leak page for Industrial Acceptance Corporation indicates a significant compromise involving over 60 GB of sensitive documents. The breach includes financial data and personal information, suggesting severe risks to the privacy and security of individuals associated with the company.
Paco Martinez – Akira
Threat Actor: Akira
Victim: Paco Martinez
Industry: Retail
Details of Breach: The ransomware leak page for Paco Martinez reveals a significant data breach affecting the retail chain specializing in fashion and travel accessories. The leak indicates that sensitive corporate documents, including financial data and personal information, have been compromised.
SMG Bahamas – Akira
Threat Actor: Akira
Victim: SMG Bahamas
Industry: Hospitality
Details of Breach: The leak page for SMG Bahamas details a major data breach affecting various businesses under the company. The attackers claim to have exfiltrated 16 GB of sensitive data, including employee and customer documentation.
Tempel – Cactus
Threat Actor: Cactus
Victim: tempel.com
Industry: Manufacturing
Details of Breach: The ransomware leak page for Tempel highlights a severe data breach involving approximately 52 GB of sensitive corporate documents. The leaked data includes personal identifiable information, financial records, and internal communications, posing significant risks to the company’s reputation and operational integrity.
Thermoid – Cactus
Threat Actor: Cactus
Victim: thermoid.com
Industry: Manufacturing
Details of Breach: The leak page for Thermoid indicates a serious breach affecting the manufacturing company specializing in industrial rubber products. The leak reportedly reveals a substantial amount of sensitive data, including engineering documents and personal information, which could have serious implications for the organization and its stakeholders.
Baillie Group – Cactus
Threat Actor: Cactus
Victim: baillie.com
Industry: Manufacturing
Details of Breach: The ransomware leak page for Baillie Group discusses a significant data exposure involving critical corporate documents. The leak indicates that sensitive financial and operational data has been compromised, which could severely affect the company’s reputation and customer trust.
Marina Bay Sands – Babuk2
Threat Actor: Babuk2
Victim: marinabaysands.com
Industry: Hospitality
Details of Breach: The leak page for Marina Bay Sands details a significant data breach involving approximately 400 GB of sensitive data. The leaked information includes user-related data such as IDs and email addresses, highlighting serious vulnerabilities within the organization’s data security protocols.
Yushin America, Inc – Akira
Threat Actor: Akira
Victim: Yushin America, Inc
Industry: Robotics
Details of Breach: The ransomware leak page for Yushin America, a robotics manufacturer, indicates a significant data breach affecting sensitive corporate information. The breach suggests that critical operational data is at risk, emphasizing the need for enhanced cybersecurity measures in the tech industry.
Hydro-Vacuum S.A. – Nightspire
Threat Actor: Nightspire
Victim: Hydro-Vacuum S.A.
Industry: Manufacturing
Details of Breach: The ransomware leak page for Hydro-Vacuum indicates a serious compromise involving sensitive corporate documents. The leak suggests that a substantial amount of sensitive data has been extracted, raising concerns over data security in the manufacturing sector.
Iraqi Council of Ministers – Babuk2
Threat Actor: Babuk2
Victim: Iraqi Council of Ministers
Industry: Government
Details of Breach: The ransomware leak page for the Iraqi Council of Ministers reveals a significant data breach involving the exposure of sensitive governmental information. The attackers claim to have extracted 500 GB of data, which includes personal details and internal reports, raising serious concerns about national security and data protection.
Ransomware Victim Summary
Iraqi Ministry of Finance – Babuk2
Threat Actor: Babuk2
Victim: Iraqi Ministry of Finance
Details of Breach: The ransomware leak page for the Iraqi Ministry of Finance reveals a substantial data breach involving sensitive personal information and government-related documents. The breach reportedly includes detailed employee data such as social security numbers and contact information, affecting individuals from 2008 to 2024. The total data compromised is approximately 1.2 terabytes, indicating significant risks to individual privacy and national security.
El Camino Real Academy – FOG
Threat Actor: FOG
Victim: El Camino Real Academy
Details of Breach: The leak page associated with El Camino Real Academy highlights a severe data breach impacting the educational institution. The breach exposes sensitive internal data, including financial documents and personal identification numbers. The total data size is around 111 GB, raising concerns about the privacy and security of students and staff involved.
Ascoma Group – Akira
Threat Actor: Akira
Victim: Ascoma Group
Details of Breach: The ransomware leak page for Ascoma Group indicates a significant compromise involving sensitive information related to the financial services sector. The disclosed data includes employee and customer contact details, financial records, and internal correspondence. The breach encompasses over 12 GB of essential corporate documents, emphasizing the urgent need for enhanced cybersecurity measures.
University Diagnostic Medical Imaging, PC – FOG
Threat Actor: FOG
Victim: University Diagnostic Medical Imaging, PC
Details of Breach: The ransomware leak page for University Diagnostic Medical Imaging reveals a significant data breach involving approximately 28.1 GB of sensitive healthcare information. The leaked data could include health records and other personal information, highlighting the vulnerabilities in data handling within the healthcare sector.
Summary
| Victim | Threat Actor | Industry | Details of Breach |
|---|---|---|---|
| Paco Martinez | Akira | Retail | Significant data breach; sensitive documents compromised. |
| SMG Bahamas | Akira | Hospitality | Major breach; 16 GB of sensitive data exposed. |
| Tempel | Cactus | Manufacturing | Severe breach; 52 GB of sensitive corporate documents leaked. |
| Thermoid | Cactus | Manufacturing | Serious data exposure; engineering and personal information compromised. |
| Baillie Group | Cactus | Manufacturing | Significant data exposure; critical financial and operational data compromised. |
| Marina Bay Sands | Babuk2 | Hospitality | 400 GB of sensitive data leaked; serious vulnerabilities noted. |
| Yushin America, Inc | Akira | Robotics | Significant breach; critical operational data at risk. |
| Hydro-Vacuum S.A. | Nightspire | Manufacturing | Serious compromise; substantial sensitive data extracted. |
| Iraqi Council of Ministers | Babuk2 | Government | Major breach; 500 GB of sensitive governmental data exposed. |
| Cahokia CUSD 187 School District | Qilin | Education | Serious breach; confidential data exposed. |
| Extreme Performance | Funksec | Automotive | Potential data breach; corporate vulnerabilities highlighted. |
| Hi Tek Group | Babuk2 | Finance | Compromise of sensitive corporate documents; serious risks. |
| Industrial Acceptance Corporation | Akira | Finance | Significant data breach; extensive sensitive information exposed. |
| Ascoma Group | Akira | Financial Services | Major compromise; over 12 GB of sensitive financial documents leaked. |
| University Diagnostic Medical Imaging, PC | FOG | Healthcare | 28.1 GB of sensitive healthcare information exposed; serious privacy concerns. |
| El Camino Real Academy | FOG | Education | Severe breach; 111 GB of sensitive internal data exposed. |
| Iraqi Ministry of Finance | Babuk2 | Government | Significant data breach; 1.2 terabytes of sensitive governmental data exposed. |
| SMG Bahamas | Akira | Hospitality | Major breach; 16 GB of sensitive data exposed. |
| Hydro-Vacuum S.A. | Nightspire | Manufacturing | Serious compromise; substantial sensitive data extracted. |
| CNQC | Akira | Construction | Serious data compromise; sensitive documents exposed. |
| Best Telecom Laos | Akira | Telecommunications | Significant data breach; operational data at risk. |
