Ransomware victim disclosure
← All victimsAlberta First Nations Information Governance Centre
listed as www.afnigc.ca · Claimed by RansomHub · listed 1 year ago
Status timeline
- ListedMar 25, 2025
- Data leakeddate unknown
At a glance
- Group
- RansomHub
- Status
- Data leaked
- Country
- Canada
- Sector
- Public Sector
- Listed on leak site
- Mar 25, 2025
About the victim
AI dossier — public-source company profileAlberta FNIGC is a regional hub of the National First Nations Information Governance Centre established in 2010 by Alberta First Nations Leadership. The organization champions OCAP® principles (Ownership, Control, Access, Possession) to ensure First Nations communities maintain full authority over their research, information, and data management. They facilitate the Regional Health Survey and provide online learning, training, and research governance services across Alberta First Nations.
- Industry
- Public Sector - Indigenous Data Governance & Health Research
- Address
- P.O. Box 410, 9911 Chiila Blvd. Tsuut'ina, AB T3T 0E1, Canada
- Founded
- 2010
Attack summary
Severity: medium — Data published disclosure by RansomHub with no ransom amount stated and no proof files documented. The target holds sensitive health and research data concerning First Nations communities, but absence of specific proof or detail about exfiltration scope and verification limits confidence in actual breach severity.RansomHub claims to have attacked Alberta FNIGC. The group's leak post is truncated and marked as AI-generated with no substantive details provided about the nature of the attack, data exfiltrated, or operational impact.
Data the group says was taken
AI dossier — extracted from the leak post- First Nations health survey data
- Research information
- Community health records
- OCAP-protected Indigenous data
Original description
AI-summarised, not from the leak postN/A
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

