Ransomware victim disclosure
← All victimsElbe-Obst Fruchtverarbeitung GmbH
Claimed by NoEscape · listed 3 years ago
Status timeline
- ListedOct 10, 2023
- Data leakeddate unknown
At a glance
- Group
- NoEscape
- Status
- Data leaked
- Country
- Germany
- Sector
- Food & Agriculture
- Listed on leak site
- Oct 10, 2023
About the victim
AI dossier — public-source company profileElbe-Obst Fruchtverarbeitung GmbH is a German fruit processing company operating under IFS (International Featured Standards) and BCS certifications, including for the processing of organically grown fruit. The company is a member of the Elbe-Obst producer organization, suggesting it is part of a regional agricultural cooperative network in Germany. It operates in the food manufacturing sector, processing fruit products likely for retail or industrial supply chains.
- Industry
- Fruit Processing & Food Manufacturing
Attack summary
Severity: high — Data has been confirmed published by the threat actor, indicating actual exfiltration rather than a mere listing. As a food manufacturing firm, published data likely includes business-sensitive documents, supplier/partner information, and potentially employee PII, constituting significant data exposure.The NoEscape ransomware group claims to have compromised Elbe-Obst Fruchtverarbeitung GmbH and has published data from the attack, as indicated by the 'data_published' disclosure status. The specific nature of the exfiltrated or encrypted data is not detailed in the available leak post excerpt.
Data the group says was taken
AI dossier — extracted from the leak post- Company operational documents
- Certification records (IFS, BCS)
- Business correspondence
- Supplier/producer organization data
What the group claims
Fruit processing is certified according to both IFS and BCS for the processing of organically grown fruit. We have been a member of the Elbe-Obst producer organization sin...
Sources
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

