Ransomware victim disclosure
← All victimsApex Engineering Services Ltd
listed as apex.uk.net · Claimed by Apt73 · listed 2 years ago
Status timeline
- ListedJun 12, 2024
- Data leakeddate unknown
At a glance
- Group
- Apt73
- Status
- Data leaked
- Country
- United Kingdom
- Sector
- Business Services
- Listed on leak site
- Jun 12, 2024
About the victim
AI dossier — public-source company profileApex Engineering Services (AES) is a UK-based provider of technical surveying and engineering services to the construction industry, specializing in 3D laser scanning, topographical surveys, utility mapping, rail engineering, and construction site services. The company operates globally and has been established for over a decade, employing seasoned engineers and specialist contractors.
- Industry
- Engineering & Surveying Services (Construction)
Attack summary
Severity: medium — Confirmed data exfiltration (disclosed status: data_published) with passwords and internal data at risk. However, no regulated/sensitive data categories (PII at scale, medical, financial, government) are explicitly confirmed, and no operational disruption to critical infrastructure is stated. Data size is unknown.APT73 claims to have compromised Apex Engineering Services and exfiltrated sensitive data including passwords and internal information. The group has published data from the breach.
Data the group says was taken
AI dossier — extracted from the leak post- Passwords
- Internal communications/documents
What the group claims
Apex Engineering Service has established itself as a leading supplier of technical services to the construction industry worldwide. Passwords, int...
Sources
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

