Ransomware victim disclosure
← All victimsAiphone
Claimed by Moneymessage · listed 3 years ago
Status timeline
- ListedSep 3, 2023
- Data leakeddate unknown
At a glance
- Group
- Moneymessage
- Status
- Data leaked
- Country
- Japan
- Sector
- Technology
- Listed on leak site
- Sep 3, 2023
About the victim
AI dossier — public-source company profileAiphone is a Japan-headquartered manufacturer and global leader in intercom systems and access control products, serving over 200,000 organisations worldwide with more than 3 million secured entry points. The company offers IP video intercoms, emergency communication towers, cloud-based access control, and integrated security solutions across commercial, healthcare, education, and multi-family sectors. Its products are distributed globally with a particularly strong presence in North America.
- Industry
- Security Intercoms & Access Control
Attack summary
Severity: high — Aiphone is a critical security infrastructure provider (intercoms and access control for healthcare, schools, corporate campuses, government-adjacent facilities). A confirmed data publication by a ransomware group against such a company poses significant risk of exposure of sensitive business data, customer/partner information, and potentially product/security architecture details that could endanger physical security deployments.The Moneymessage ransomware group claims to have attacked Aiphone and has published data (disclosed status: data_published), though the specific leak post content was not captured and details on encryption or the exact nature of exfiltrated data are unavailable from the provided material.
Sources
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

