Ransomware victim disclosure
← All victimsBertani Trasporti Spa
Claimed by 8Base · listed 2 years ago
Status timeline
- ListedFeb 28, 2024
- Data leakeddate unknown
At a glance
- Group
- 8Base
- Status
- Data leaked
- Country
- Italy
- Sector
- Transportation/Logistics
- Listed on leak site
- Feb 28, 2024
About the victim
AI dossier — public-source company profileBertani Trasporti S.p.A. is an Italian transportation and logistics company based in Castiglione delle Stiviere (Mantua) with over 90 years of operational history. The company specializes in automotive logistics, vehicle transport, spare parts distribution, and multimodal services (road, rail, sea) across Europe, handling approximately 11 million parcels annually and 4,000+ vehicles per day.
- Industry
- Road & Rail Transportation, Automotive Logistics
- Address
- via Camillo Benso Conte di Cavour 58, Castiglione delle Stiviere, Mantua, Italy
- Founded
- 1933
Attack summary
Severity: medium — Data has been published by the threat actor and the company operates in a regulated sector handling sensitive business and possibly employee information. However, no specific sensitive data categories (PII at scale, financial records, regulated content) are explicitly confirmed in the available leak post excerpt, and no operational disruption is claimed.The 8Base ransomware group claims to have exfiltrated data from Bertani Trasporti. The leak post does not specify the operational impact (encryption status) or detailed data categories.
Data the group says was taken
AI dossier — extracted from the leak post- employee records
- business documents
- HR portals
- company systems
- customer/operational data
What the group claims
Bertani Trasporti Spa is a road and rail transport company based in via Camillo Benso Conte di Cavour 58, in Castiglione delle Stiviere, in the province of Mantua, in Italy. For over 90 years, we have been dealing with mobility in the broadest sense of the term.bertanitrasporti.it
Sources
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

