Ransomware victim disclosure
← All victimsJPC Group Inc.
listed as jpcgroupinc.com · Claimed by Abyss · listed 1 year ago
Status timeline
- ListedFeb 2, 2025
- Data leakeddate unknown
At a glance
- Group
- Abyss
- Status
- Data leaked
- Country
- United States
- Sector
- Construction
- Listed on leak site
- Feb 2, 2025
- Data size
- 29 GB
- Ransom demanded
- $50
About the victim
AI dossier — public-source company profileJPC Group Inc. is a family-owned full-service construction contractor based in the Philadelphia and New Jersey area with over 60 years of experience. They specialize in road and bridge construction, water and sewer utility work, large-scale demolition, marine construction, excavation, site work, and project management across the Delaware Valley region.
- Industry
- Construction & Heavy Civil Engineering
- Address
- 228 Blackwood-Barnsboro Road, Blackwood, New Jersey 08012 (also 1309 S. Harmony St, Philadelphia, PA 19147)
Attack summary
Severity: high — Confirmed exfiltration of 29 GB of business data from a construction firm; likely includes financial, project, and operational information. No proof files explicitly advertised for JPC Group specifically, but data published on Abyss leak site with download links provided.The Abyss ransomware group claims to have exfiltrated 29 GB of uncompressed data from JPC Group Inc. The leak post does not explicitly state whether encryption occurred, only that data was stolen. The post aggregates multiple victim companies' data on a single leak page.
Data the group says was taken
AI dossier — extracted from the leak post- Business documents
- Financial records
- Project files
- Employee records
- Client information
What the group claims
JPC Group, Inc. is a full-service construction contractor with expertise in road and bridge construction, water and sewer utility work, large-scale demolition and full-service marine construction.
The leak post
captured from the group's site```
let data = [
{
'title' : 'thinlinetech.com',
'short' : 'thinlinetech.com 29Gb uncompressed data',
'full' : 'Thinline Technologies <br>' +
'Thinline Technologies offers reliable IT consulting and expert computer and network support services to businesses in the Baltimore metro area.<br> They specialize in network administration, technology planning, and help desk services, focusing on increasing productivity and profitability for small to mid-size businesses.<br>'+
'password: 6oGfyIRISQmmI3Ge2kEeyu7hbzONONEFpkcnhC1S4Ygk4iSpw4RRxDXY1uk9xeyUXOmg7UOuZvGekRc9cs8E61LWKdI08uv0kUyC4V6YxaETtrhniAtKD9t7FQ2qTFYi<br>'+
'Link â„–1 Filelist',
'links' : [
"http://zngbsq66uwem4qzyxpqb5rjo2xebnbwdku27nhmquryx6ljnbbedhiad.onion/thinline.lst.zip",
"http://zngbsq66uwem4qzyxpqb5rjo2xebnbwdku27nhmquryx6ljnbbedhiad.onion/thinline.rar"
]
},
{
'title' : 'crownlaboratories.com',
'short' : 'crownlaboratories.com 8Tb uncompressed data',
'full' : 'Crown Laboratories <br>' +
'Crown Laboratories, founded in 2000 and based in Johnson City, TN, provides pharmaceutica…Screenshot of the leak post

Sources
- Victim sitejpcgroupinc.com
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

