Ransomware victim disclosure
← All victimsElis
listed as pt.elis.com · Claimed by Devman · listed 1 year ago
Status timeline
- ListedJul 20, 2025
- Data leakeddate unknown
At a glance
About the victim
AI dossier — public-source company profileElis is a European leader in circular workplace services, providing laundry, workwear, hygiene, pest control, and cleanroom solutions to hospitality, healthcare, retail, industrial, and public sector clients across multiple countries. The company operates a subscription-based model with real-time tracking via RFID, IoT, and data analytics.
- Industry
- Workplace Services & Facility Management
Attack summary
Severity: high — Large multinational company with operations across sensitive sectors (healthcare, hospitality, public administration); likely access to regulated customer and employee data; significant ransom demand indicates material exfiltration, though no proof files are publicly advertised.The devman ransomware group claims to have compromised Elis's Portuguese operations (pt.elis.com), demanding USD 4,000,000. No specific data categories, proof files, or operational impact are detailed in the disclosed post.
Data the group says was taken
AI dossier — extracted from the leak post- Customer databases
- Employee records
- Financial records
- Operational data
What the group claims
4000000 USD
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

