Ransomware victim disclosure
← All victimsACMARK s r o
Claimed by Beast · listed 2 months ago
Status timeline
- ListedMay 20, 2026
Current state: Listed for ransom
At a glance
- Group
- Beast
- Status
- Listed for ransom
- Country
- Czech Republic
- Sector
- Repair Services
- Listed on leak site
- May 20, 2026
- Ransom demanded
- $23.83
About the victim
AI dossier — public-source company profileACMARK s.r.o. is a small repair services company headquartered in Brno, South Moravian Region, Czech Republic. It employs between 10 and 19 people and generates annual revenue in the range of 1M to 5M (currency unspecified, likely CZK or EUR). No further operational details are publicly available.
- Industry
- Repair Services
- Address
- Brno, South Moravian, Czech Republic
- Employees
- 10-19
Attack summary
Severity: low — Only a listing/announcement with no proof files, no stated data exfiltration, no ransom amount, and no description of operational impact or sensitive data categories disclosed.The Beast ransomware group has listed ACMARK s.r.o. as a victim, claiming an attack on the company. No specific details regarding encryption, exfiltration, or data types at stake have been provided in the post.
What the group claims
ACMARK s r o is a company that operates in the Repair Services industry. It employs 10 to 19 people and has 1M to 5M of revenue. The company is headquartered in Brno, South Moravian, Czech Republic.
The leak post
captured from the group's siteACMARK s r o is a company that operates in the Repair Services industry. It employs 10to19 people and has 1Mto5M of revenue. The company is headquartered in Brno, South Moravian, Czech Republic.
Screenshot of the leak post

Sources
Source
Indexed 2 months agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

