Ransomware victim disclosure
← All victimsKOLBUS
Claimed by Payoutsking · listed 1 year ago
Status timeline
- ListedJul 7, 2025
- Data leakeddate unknown
At a glance
- Group
- Payoutsking
- Status
- Data leaked
- Country
- Germany
- Sector
- Manufacturing
- Listed on leak site
- Jul 7, 2025
About the victim
AI dossier — public-source company profileKOLBUS is a German manufacturer of machinery and equipment for the printing, bookbinding, and packaging industries. Founded in 1775, the company produces systems for corrugated cardboard processing, rigid box production, hardcover bookbinding, and contract manufacturing services including foundry work.
- Industry
- Packaging & Print Machinery Manufacturing
- Founded
- 1775
Attack summary
Severity: low — No proof files, screenshots, or data samples are advertised. No confirmation of operational disruption or specific data exfiltration is stated. Only a listing/announcement is present.The payoutsking group claims to have compromised KOLBUS and published data. No specific details about encryption, exfiltration scope, or affected systems are disclosed in the post.
Original description
AI-summarised, not from the leak postKOLBUS is a leading international manufacturer of machines and tools for bookbinders, print shops, and packaging companies. Headquartered in Germany, the company’s innovative solutions include packaging production lines, bookbinding systems, and luxury packaging. Additionally, KOLBUS offers spare parts, conversions, and upgrades services for its machinery. Established in 1775, the company has a rich history and significant experience in the printing and packaging industry.
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

