Ransomware victim disclosure
← All victimsGAV Systems
listed as gav.co.il · Claimed by Malekteam · listed 3 years ago
Status timeline
- ListedDec 24, 2023
- Data leakeddate unknown
At a glance
- Group
- Malekteam
- Status
- Data leaked
- Country
- Israel
- Sector
- Technology
- Listed on leak site
- Dec 24, 2023
- Data size
- 10 TB
About the victim
AI dossier — public-source company profileGAV Systems is an Israeli technology services company offering IT outsourcing, managed services, software development, QA automation, consulting, HR/recruiting services, and digital transformation services to leading companies in Israel and abroad. The company emphasizes project management expertise, advanced technology, and human capital development.
- Industry
- Information Technology & Business Process Outsourcing
Attack summary
Severity: high — Confirmed exfiltration of 10 TB of sensitive data including identity documents, financial records, and business information from a technology services company with access to multiple client systems. Large-scale PII and business data exposure.Malekteam claims to have infiltrated GAV Systems' network, exfiltrated approximately 10 TB of data including identity documents, financial/administrative files, and project details, and destroyed additional information on the system.
Data the group says was taken
AI dossier — extracted from the leak post- Identity information and identification documents
- Financial and administrative files
- Project information and details
What the group claims
🔥🔥After infiltrating the network system of this site, we took the necessary access to it and transferred its useful data And at the end, we deleted part of the existing information. Some information transferred from the GAV site:Identity information and identification documents ☠️a large of financial and administrative files and documentsInformation and details of projects 🩸This amount of sensitive site information (about 10 terabytes) which was not worth transferring in terms of volume and time was deleted and destroyed 🔥
Sources
- Victim sitegav.co.il
- Leak posthttp://195.14.123.2/gav.html
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

