Ransomware victim disclosure
← All victimsIlex Paysages et Urbanisme
listed as ilex-paysages.com · Claimed by Settra · listed 3 days ago
Status timeline
- ListedJun 30, 2026
- Data leakeddate unknown
At a glance
- Group
- Settra
- Status
- Data leaked
- Country
- France
- Sector
- Construction
- Listed on leak site
- Jun 30, 2026
About the victim
AI dossier — public-source company profileIlex Paysages et Urbanisme is a French landscape architecture and urban planning firm based in Lyon. The agency specializes in public space design, urban renewal, and climate-resilient city planning, focusing on parks, gardens, streets, and public squares that integrate biodiversity and social cohesion.
- Industry
- Landscape Architecture & Urban Planning
- Address
- 7 place Puvis de Chavannes, 69006 Lyon, France
Attack summary
Severity: medium — Data publication is confirmed, but no specific data inventory or proof files are detailed in the available post excerpt. The nature of exfiltrated data (business/client confidential) is moderate sensitivity for a design firm; no PII at scale or regulated sectors mentioned.The settra group claims to have exfiltrated data from Ilex Paysages et Urbanisme. The leak post title references both the company's own secrets and those of others, suggesting access to client or project-related confidential information.
Data the group says was taken
AI dossier — extracted from the leak post- Internal company records
- Client project data
- Potentially sensitive urbanisme/architecture plans
What the group claims
LANDSCAPE ARCHIVE: How Ilex Paysages et Urbanisme Stores Its Own — and Others' — Secrets PROLOGUE Th...
Sources
Source
Indexed 3 days agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

