Ransomware victim disclosure
← All victimsMartin Energy Group Services
Claimed by Medusa · listed 1 year ago
Status timeline
- ListedFeb 22, 2025
- Data leakeddate unknown
At a glance
- Group
- Medusa
- Status
- Data leaked
- Country
- United States
- Sector
- Energy
- Listed on leak site
- Feb 22, 2025
- Data size
- 320.90 GB
- Records
- 120 employees
About the victim
AI dossier — public-source company profileMartin Energy Group Services is a complete solutions provider specializing in generator packages, combined heat and power (CHP) systems, microgrids, anaerobic digesters, and battery energy storage systems. The company offers design, engineering, installation, and 24/7 remote monitoring services across multiple sectors including agriculture, healthcare, mining, and data centers, with offices across the United States and internationally.
- Industry
- Energy Systems & Power Generation
- Address
- 39415 Excelsior Dr, Latham, Missouri 65050, United States
- Employees
- 120
Attack summary
Severity: high — Confirmed exfiltration of 320.90 GB from a critical infrastructure service provider (energy systems, microgrids, CHP). The scale and sector (energy) indicate significant business and potentially sensitive project data; risk to operational technology systems and client networks is material.Medusa claims to have exfiltrated 320.90 GB of data from Martin Energy Group Services. The post does not specify the nature of the data or whether encryption was deployed.
Data the group says was taken
AI dossier — extracted from the leak post- Business records
- Project data
- Engineering documents
- Client information
What the group claims
Martin Energy Group Services are a complete solutions provider for generator packages, combined heat and power (CHP) systems, microgrids, and anaerobic digester design & construction. Martin Energy Group Services corporate office is located in 39415 Excelsior Dr, Latham, Missouri, 65050, United States and has 120 employees. The total amount of data leakage is 320.90 GB
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

