Ransomware victim disclosure
← All victimsPinger
listed as Pinger - USA · Claimed by Hellcat · listed 2 years ago
Status timeline
- ListedDec 25, 2024
- Data leakeddate unknown
At a glance
- Group
- Hellcat
- Status
- Data leaked
- Country
- United States
- Sector
- Business Services
- Listed on leak site
- Dec 25, 2024
- Data size
- 111 GB
- Records
- 9M user
About the victim
AI dossier — public-source company profilePinger is a developer of mobile communication applications, notably Sideline and TextFree, which provide voice, messaging, and telephony services to users. The company operates as a software-as-a-service provider in the telecommunications sector.
- Industry
- Mobile Telecommunications & VoIP Services
Attack summary
Severity: critical — Confirmed exfiltration of 9+ million user records with PII (phone numbers, messages, communication metadata) at massive scale from a telecommunications platform, plus internal systems and source code. Data has been publicly released.Hellcat claims to have breached Pinger and exfiltrated 111 GB of sensitive data including over 9 million user records, private messages, voice messages, internal tools, backend systems, and source code. The attacker publicly released all data after ransom was not paid.
Data the group says was taken
AI dossier — extracted from the leak post- user records (9+ million)
- private messages
- voice messages
- phone number lookup tool
- notification sender tool
- backend systems
- source code
What the group claims
We have successfully breached Pinger, obtaining 111 GB of sensitive data. This includes over 9 million user records, private messages, voice messages, internal tools such as phone number lookup and notification sender, backend systems, and source codes. Since the ransom was not paid, all the data has been publicly released.
Sources
- Victim sitepinger.com
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

