Ransomware victim disclosure
← All victimsWalker SCM
Claimed by Royal · listed 3 years ago
Status timeline
- ListedMar 9, 2023
- Data leakeddate unknown
At a glance
- Group
- Royal
- Status
- Data leaked
- Country
- United States
- Listed on leak site
- Mar 9, 2023
- Data size
- 20 GB
About the victim
AI dossier — public-source company profileWalker SCM, LLC is a global supply chain services provider founded in 1989, offering air and ocean freight forwarding, domestic transportation, customs compliance, warehousing, procurement management, and third-party logistics. The company is recognized as the largest certified Minority Business Enterprise (MBE) in the logistics industry and operates directly and through partnerships in over 25 countries worldwide. Its client base includes Fortune 500 manufacturers and major pharmaceutical and consumer products companies.
- Industry
- Third-Party Logistics & Global Supply Chain Management
- Founded
- 1989
Attack summary
Severity: high — Confirmed exfiltration and publication of 20 GB of significant business data including HR, financial, and client records from a major logistics provider; data has been actively published with an archive password, indicating full disclosure rather than a mere listing.The Royal ransomware group claims to have exfiltrated 20 GB of data from Walker SCM's network, including HR records, work files, finance data, and client information, and has published the data with an archive password provided in the leak post.
Data the group says was taken
AI dossier — extracted from the leak post- HR records
- Work files
- Finance data
- Client information
What the group claims
Walker SCM, LLC provides Global Supply Chain Services ranging from Transportation (Air and Ocean Freight Forwarding) to Warehousing Solutions that also include specialized value added services. We have stolen from their network 20GB in total, including: HR;Work files;Finance;Clients and others.Feel free to check!Archive password: 4+"JdvDyH[a4:o@9D,b$wy!'~W]~jrk/z_"yiz<r
Sources
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

