Ransomware victim disclosure
← All victimsPetro-Diamond (petrodiamond.com) - subsidiary of Mitsubishi Corporation
Claimed by J · listed 10 months ago
Status timeline
- ListedSep 29, 2025
- Data leakeddate unknown
At a glance
About the victim
AI dossier — public-source company profilePetro-Diamond is a commodity trading subsidiary of Mitsubishi Corporation, headquartered in Japan. The company is engaged in the trade and marketing of petroleum and its derivatives, liquefied petroleum gas (LPG), carbon-related materials, and petrochemicals. It also participates in energy project development activities.
- Industry
- Petroleum & Commodity Trading
Attack summary
Severity: high — Data has been confirmed as published by the threat actor against a subsidiary of a major multinational (Mitsubishi Corporation) operating in the energy and commodity trading sector, which likely involves sensitive business, contractual, and financial data; however, no specific regulated PII at scale or critical infrastructure disruption is confirmed, keeping this below critical.The group J claims to have published data belonging to Petro-Diamond; the disclosure status is listed as data_published, indicating exfiltration and public release of company data, though no specific ransom demand or data volume has been stated.
Original description
AI-summarised, not from the leak postPetro-Diamond is a commodity trading subsidiary of Mitsubishi Corporation. It's involved in the trade and marketing of petroleum and its derivatives, liquefied petroleum gas (LPG), and carbon-related materials. Also, they handle petrochemicals and participate in energy project developments.
Sources
Source
Indexed 10 months agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

