Ransomware victim disclosure
← All victimsПромпроект
listed as promproektspb.ru · Claimed by Lv · listed 3 years ago
Status timeline
- ListedDec 20, 2023
- Data leakeddate unknown
At a glance
- Group
- Lv
- Status
- Data leaked
- Country
- Russia
- Sector
- Consulting
- Listed on leak site
- Dec 20, 2023
About the victim
AI dossier — public-source company profileПромпроект is a Saint Petersburg-based consulting firm specializing in industrial safety expertise, non-destructive testing, building inspections, equipment certification, and project management. Founded in 2005, the company positions itself as a leader in the Northwest Russian region and has participated in major international pipeline construction projects including Nord Stream and South Stream, working with clients such as Nord Stream AG, Saipem, and Siemens.
- Industry
- Industrial Safety Consulting & Engineering
- Address
- Saint Petersburg, Russia (phone area code 812 indicates SPB location; full address not stated on public site)
- Employees
- 51-200
- Founded
- 2005
Attack summary
Severity: high — Confirmed exfiltration of client data from a company with access to sensitive information on critical infrastructure projects (Nord Stream, South Stream pipelines). Client roster includes major energy and industrial firms. Data publication is imminent (post classified as data_published).The Lv group claims to have exploited vulnerable server versions, absent password policies, and weak network perimeter defenses to exfiltrate data. The attacker states that serious client data has been compromised and will be published on their mirrors and Tor network.
Data the group says was taken
AI dossier — extracted from the leak post- Client project documentation
- Industrial safety reports
- Pipeline construction project data
- Internal communications
- Employee records
What the group claims
Компания была основана с целью занять достойное место на рынке экспертных услуг в сфере промышленной безопасности. ПРОМПРОЕКТ прочно опирается на технические компетенции сотрудников и европейский подход к менеджменту.Компания учавствовала в крупных международных проектах строительства газопроводов «Северный поток 1» и «Южный поток» и в сотрудничестве с такими компаниями, как Nord Stream AG, South Stream Transport B.V., Saipem, Siemens, Rosen Europe B.V., PetrolValves и многими другими.Уязвимые версии серверов,отсутствие безопасной парольной политики и решений защиты сетевого периметра привели к утечке данных весьма серьезных клиентов компании.Все данные будут опубликованы на зеркалах нашего сайта и в сети TOR.
Sources
- Victim sitepromproektspb.ru
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

