Ransomware victim disclosure
← All victimsUnitedLayer
Claimed by Ransomhouse · listed 8 months ago
Status timeline
- ListedNov 3, 2025
- Data leakeddate unknown
At a glance
- Group
- Ransomhouse
- Status
- Data leaked
- Country
- United States
- Sector
- Technology
- Listed on leak site
- Nov 3, 2025
About the victim
AI dossier — public-source company profileUnitedLayer is a US-based technology company specializing in enterprise private cloud infrastructure and private AI solutions. The company provides managed hosting, colocation, and cloud services to enterprise clients. Its platform is marketed under the 'Enterprise Private Cloud with Private AI' branding.
- Industry
- Enterprise Cloud & Data Center Services
- Employees
- 51-200
Attack summary
Severity: high — UnitedLayer is a managed cloud and data center provider whose infrastructure hosts data belonging to multiple enterprise clients; a confirmed data publication by RansomHouse implies exfiltration of potentially significant business and customer data across multiple downstream organizations, warranting a high severity rating.RansomHouse claims to have compromised UnitedLayer and has published data (disclosed status: data_published), alleging the company prioritized financial interests over protecting partner and individual data. The leak post implies exfiltration of sensitive data entrusted to UnitedLayer by its clients.
Data the group says was taken
AI dossier — extracted from the leak post- Client entrusted data
- Enterprise customer records
- Internal business data
What the group claims
UnitedLayer® provides the Colocation services from one of the largest data centers in San Francisco, USA, at 200 Paul Ave. Their long list of managed services enables enterprises to modernize their infrastructure and improve their responsiveness, resource utilization, scalability, and agility resulting in better customer experience and faster time to market
The leak post
captured from the group's siteBelow is a list of companies that either have considered their financial gain to be above the interests of their partners / individuals who have entrusted their data to them or have chosen to conceal the fact that they have been compromised.
Sources
Source
Indexed 8 months agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

