Ransomware victim disclosure
← All victimsAuto Delta
listed as Autodelta · Claimed by Royal · listed 3 years ago
Status timeline
- ListedJan 16, 2023
- Data leakeddate unknown
At a glance
- Group
- Royal
- Status
- Data leaked
- Country
- Portugal
- Sector
- Automotive
- Listed on leak site
- Jan 16, 2023
About the victim
AI dossier — public-source company profileAuto Delta (Auto Delta - Comércio de Peças, Acessórios e Automóveis) is a Portuguese company headquartered in Leiria, Portugal, specialising in the trade of automotive parts, accessories, and vehicles. The company operates a network of repair workshops and distributes products from brands such as MOOG, Continental, and Liqui Moly. It serves both retail and trade customers through its online platform and physical network.
- Industry
- Automotive Parts & Accessories Distribution
- Address
- Leiria, Leiria District, Portugal
Attack summary
Severity: medium — Data has been marked as published by the group, indicating exfiltration occurred, but no details on data type, volume, or sensitivity are provided in the leak post, and no regulated or large-scale PII exposure is confirmed.The Royal ransomware group claims to have attacked Auto Delta and has published data (disclosed status: data_published), though no specific data volume or ransom demand was stated in the leak post.
Data the group says was taken
AI dossier — extracted from the leak post- Business data (unspecified)
What the group claims
Auto Delta is a company that operates in the Automotive industry.The company is headquartered in Leira, Leiria District, Portugal.
Sources
- Victim siteautodelta.pt/
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

