Ransomware victim disclosure
← All victimsPC AfterHours
Claimed by Eldorado · listed 2 years ago
Status timeline
- ListedNov 18, 2024
- Data leakeddate unknown
At a glance
- Group
- Eldorado
- Status
- Data leaked
- Country
- United States
- Sector
- Technology
- Listed on leak site
- Nov 18, 2024
- Records
- 25 Employees
- Ransom demanded
- $5M
About the victim
AI dossier — public-source company profilePC AfterHours is a small IT support company based in Minneapolis, Minnesota, offering remote and on-site technical services for Windows computers and networks, including maintenance, repair, hardware/software installation, and consulting. With fewer than 25 employees and annual revenue under $5 million, they serve small businesses, nonprofits, and individual clients across Minnesota.
- Industry
- Information Technology & Technical Support Services
- Address
- 2801 - 21st Avenue South, Suite 145, Minneapolis, MN 55407
- Employees
- <25
Attack summary
Severity: medium — Confirmed data exfiltration and publication with significant ransom demand; however, the specific sensitivity of the data is unclear. As a managed IT services provider, PC AfterHours likely held client system access credentials and network information, creating secondary victim exposure. No indication of regulated data (HIPAA, PCI-DSS) specific to PC AfterHours itself, but the nature of their client base (nonprofits, schools, small businesses) suggests potential indirect exposure of third-partyThe Eldorado group claims to have exfiltrated data from PC AfterHours. The specific data categories compromised are not detailed in the available leak post excerpt, though the group has published data and is demanding a $5 million ransom.
Data the group says was taken
AI dossier — extracted from the leak post- Client records
- Business documents
- System configuration data
What the group claims
Consumer Services · Minnesota, United States. PC-AfterHours offers a variety of technical support services for Windows based computers and networks. < 25 Employees Revenue < $5 Million
Sources
- Victim sitepcafterhours.net
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

