Ransomware victim disclosure
← All victimsCCMC
Claimed by Medusa · listed 9 months ago
Status timeline
- ListedOct 4, 2025
- Data leakeddate unknown
At a glance
- Group
- Medusa
- Status
- Data leaked
- Country
- United States
- Listed on leak site
- Oct 4, 2025
- Data size
- 2.92 TB
- Records
- 738 Employees
About the victim
AI dossier — public-source company profileCCMC is a US-based organization whose sector and operational details could not be confirmed from the available leak post or public site content. The acronym CCMC could correspond to multiple entities (e.g., a medical center, county municipal body, or professional services firm), but no verifiable identification can be made from the provided data alone.
Attack summary
Severity: high — 2.92 TB of data is a very large exfiltration volume and the data has reportedly been published, indicating confirmed exfiltration of significant data. Without knowing the sector or data types, critical cannot be confirmed, but the scale alone warrants a high rating.The Medusa ransomware group claims to have exfiltrated approximately 2.92 TB of data from CCMC, with the disclosure status recorded as data_published, indicating the data has been or is being released.
What the group claims
CCMC, based in Scottsdale and founded in 1973, Arizona provides community association management services to residential communities, as well as association management for municipal districts, utility districts, commercial associations, and other entities. The company also provides pre-development consulting to developer clients across the country, including budget forecasting, community governance review, amenity planning, and lifestyle and communications development. company is headquartered in 8360 East Vía de Ventura #100, Scottsdale, AZ 85258, United States 738 Employees. The total amount of data leakage is 2.92 TB.
The leak post
captured from the group's siteHuman Verify Human verification required We need to ensure you're a real person. Please solve the captcha below to continue. Verify
Sources
Source
Indexed 9 months agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

