Ransomware victim disclosure
← All victimsGrupo SCA
listed as GRUPO SCA(Release of all data) · Claimed by Knight · listed 2 years ago
Status timeline
- ListedFeb 5, 2024
- Data leakeddate unknown
At a glance
- Group
- Knight
- Status
- Data leaked
- Country
- Spain
- Sector
- Manufacturing
- Listed on leak site
- Feb 5, 2024
About the victim
AI dossier — public-source company profileGrupo SCA is a manufacturing company based in Spain. Limited public information is available beyond the company website domain.
- Industry
- Manufacturing
Attack summary
Severity: high — Confirmed data exfiltration with published proof (9 screenshots + RAR archive). Manufacturing sector data exposure combined with operational disruption through encryption represents significant business impact.Knight ransomware group claims to have exfiltrated all data from Grupo SCA and published proof files. The group has released a RAR archive and multiple screenshots as evidence.
Data the group says was taken
AI dossier — extracted from the leak post- company data (unspecified)
- operational records
The group's post references roughly 9 proof images proof files.
What the group claims
https://www.gruposca.com/historia/Release of all dataEnjoy:http://uzfrntnmwojla5v4w3xvpxerjg43kuzqxmtspqhi5qclwtof5ibgonyd.onion/GRUPOSCA/GRUPOSCA.rar5.png 46.46 KB1.png 97.33 KB2.png 27.62 KB7.png 134.84 KB6.png 76.01 KB8.png 324.76 KB9.png 136.46 KB10.png 175.1 KB
Sources
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

