Ransomware victim disclosure
← All victimsJELGAVAS TIPOGRAFIJA
Claimed by Sarcoma · listed 1 year ago
Status timeline
- ListedJun 11, 2025
- Data leakeddate unknown
At a glance
About the victim
AI dossier — public-source company profileJELGAVAS TIPOGRAFIJA is a leading printing house in Northern Europe specializing in high-quality book production (hardcover, softcover, flexible cover). Operating for over 25 years with FSC and ClimateCalc certification, they serve customers across Latvia, France, Germany, and Nordic/Baltic states with 2-4 week delivery timelines. 2023 turnover: €17.4 million.
- Industry
- Book Printing & Binding
- Address
- Latvia
- Employees
- 51-200
Attack summary
Severity: high — Confirmed exfiltration of 361 GB of business data from an established company with significant turnover and multinational customer base. Data published without redaction poses risk to customers and operations, though specific sensitive data types are not enumerated.Sarcoma claims to have exfiltrated 361 GB of data from JELGAVAS TIPOGRAFIJA. The group has published the data archive without specifying the exact contents.
Data the group says was taken
AI dossier — extracted from the leak post- Business records
- Customer data
- Financial records
- Operational files
What the group claims
JELGAVAS TIPOGRAFIJA JELGAVAS TIPOGRAFIJA is one of the leading Printing houses in Northern Europe that produces a wide range of high-quality books. More than 25 years’ experience in hardcover, softcover, and flexible cover book printing and binding, up-to-date equipment, and excellent customer service. Our customer service guides from your idea to a ready book. We help books become immaculately beautiful and we take responsibility for every fold. Your books can be produced and delivered all over Europe within 2-4 weeks. The company is FSC and ClimateCalc certified. Turnover (2023) – 17.4 Million EUR. Main markets: Latvia, France, Germany, Nordic countries, Baltic States.Geo: Latvia - Leak size: 361 GB Archive - Contains: Files
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

