Ransomware victim disclosure
← All victimsCON.TR.AR. – Consorzio Trasportatori Artigiani
listed as contrar.it · Claimed by Lockbit5 · listed 3 months ago
Status timeline
- ListedApr 14, 2026
- Data leakeddate unknown
At a glance
About the victim
AI dossier — public-source company profileCON.TR.AR. (Consorzio Trasportatori Artigiani) is an Italian consortium of artisan transport companies founded in 1985 and based in Prato, Tuscany. It provides freight transport services including temperature-controlled delivery of perishable goods, large-scale retail distribution (GDO), and industrial materials transport. The consortium model allows individual owner-operators to compete collectively while maintaining high service quality.
- Industry
- Freight Transport & Logistics Consortium
- Address
- Via Giuseppe Catani, 28/c, 59100 Prato, Italy
- Founded
- 1985
Attack summary
Severity: high — Data has been published (confirmed exfiltration and release), meaning business and potentially client/partner data is exposed; the consortium handles logistics for large retail and industrial clients, amplifying the potential downstream impact.LockBit 5 claims to have attacked CON.TR.AR. with data published, indicating exfiltration of company data; the disclosure status is 'data_published', suggesting stolen data has been released or is being made available.
Data the group says was taken
AI dossier — extracted from the leak post- Company operational data
- Client/customer records
- Supplier information
- Financial or administrative documents
What the group claims
Il consorzio CON.TR.AR. nasce nel 1985 dall’aggregazione di alcuni padroncini artigiani che sentiron...
Sources
Source
Indexed 3 months agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

