Ransomware victim disclosure
← All victimsSTRI
listed as www.stri.se · Claimed by Abyss · listed 3 years ago
Status timeline
- ListedJul 16, 2023
- Data leakeddate unknown
At a glance
- Group
- Abyss
- Status
- Data leaked
- Country
- Sweden
- Sector
- Technology
- Listed on leak site
- Jul 16, 2023
- Data size
- 189 GB
About the victim
AI dossier — public-source company profileSTRI is an independent, SWEDAC-accredited high-voltage testing laboratory located in Ludvika, Sweden. The company provides expert testing and type-certification services for high-voltage equipment and systems, including cables, breakers, HVDC valves, insulators, and measuring transformers at voltages up to and beyond 800 kV. It operates world-class test facilities and serves clients globally, with affiliations to international standards bodies.
- Industry
- High-Voltage Testing & Certification Laboratory
- Address
- Lyviksvägen 8, SE-771 31 Ludvika, Sweden
Attack summary
Severity: high — 189 GB of data has been published (disclosed status: data_published), indicating confirmed large-scale exfiltration from a specialised laboratory serving the power infrastructure sector. Test data and client records for critical energy infrastructure components (HVDC valves, cables, breakers) represent significant sensitive business and potentially strategic data, even if not classically regulated PII at scale.The Abyss ransomware group claims to have exfiltrated 189 GB of uncompressed data from STRI and has published the data. No ransom amount was stated.
Data the group says was taken
AI dossier — extracted from the leak post- Engineering and test data
- Internal business documents
- Client and project records
- Potentially proprietary high-voltage equipment test results
What the group claims
STRI, 189Gb uncompressed data
Sources
- Victim sitestri.se
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

