Ransomware victim disclosure
← All victimsConfidential files
Claimed by Medusalocker · listed 3 years ago
Status timeline
- ListedOct 2, 2023
- Data leakeddate unknown
At a glance
- Group
- Medusalocker
- Status
- Data leaked
- Sector
- Financial Services
- Listed on leak site
- Oct 2, 2023
About the victim
AI dossier — public-source company profileUnknown financial services company. The victim name 'Confidential files' is a generic placeholder with no identifying information available from public sources.
- Industry
- Financial Services
Attack summary
Severity: high — Confirmed exfiltration of sensitive financial and personally identifiable data (passports, client information) at scale; claimed revenue suggests multiple victims or substantial volume.MedusaLocker claims to have exfiltrated a large volume of documents from one or more financial services companies, including financial records, client cases, passports, and tax-related documents. The group is offering the data for sale.
Data the group says was taken
AI dossier — extracted from the leak post- Financial documents
- Client cases
- Passports
- Tax records
What the group claims
A large number of documents of large companies are available for sale Revenue-$10-$70kk Financial documents, client cases, passports, tax evasion and many other documents are in closed sale, please contact qtox to coordinate the sale
Sources
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

