Ransomware victim disclosure
← All victimsQBurst
Claimed by Fog · listed 1 year ago
Status timeline
- ListedFeb 16, 2025
- Data leakeddate unknown
At a glance
- Group
- Fog
- Status
- Data leaked
- Country
- India
- Sector
- Technology
- Listed on leak site
- Feb 16, 2025
About the victim
AI dossier — public-source company profileQBurst is a full-service software development company specializing in cloud enablement, data and AI, digitalization, and intelligent solutions. They serve multiple verticals including retail, healthcare, manufacturing, real estate, energy, and logistics, with a focus on AI-driven digital transformation and engineering services.
- Industry
- Software Development & Digital Engineering
Attack summary
Severity: medium — Data has been published and the company is listed in a leak post, but no specific proof files, data inventory, or exfiltrated content details are provided in the excerpt. The impact is confirmed at listing stage but lacks concrete evidence of sensitive data exposure.The Fog group claims to have accessed QBurst data, referencing the company alongside Acqua development and Pamyra.de in a leak post. The specific nature of the attack (encryption, exfiltration, or both) and affected data types are not detailed in the provided excerpt.
Data the group says was taken
AI dossier — extracted from the leak post- Development systems/code repositories
- Project documentation
- Client engagement records
What the group claims
Extract from Gitlabs: Acqua development, QBurst, Pamyra.de- QBurst is a full-service software development company offering services in cloud enablement, data and AI, digitalization, and more.
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

