Ransomware victim disclosure
← All victimsCatholic Charities of the Diocese of Albany
Claimed by Pear · listed 10 months ago
Status timeline
- ListedSep 14, 2025
- Data leakeddate unknown
At a glance
- Group
- Pear
- Status
- Data leaked
- Country
- United States
- Sector
- Public Sector
- Listed on leak site
- Sep 14, 2025
About the victim
AI dossier — public-source company profileCatholic Charities of the Diocese of Albany is one of the largest private social service agencies in the Albany, New York region. The organization operates multiple geographic and service-specific agencies providing food, housing, care coordination, disability services, community maternity services, and other support programs. It serves economically poor and vulnerable individuals regardless of race, creed, or lifestyle across a multi-county area of upstate New York.
- Industry
- Nonprofit Social Services
- Address
- 40 N. Main Ave., Albany, NY 12203
Attack summary
Severity: critical — The organization handles HIPAA-regulated data (care coordination, community maternity, disability services, Medicaid-related programs) and serves vulnerable populations including the economically poor and disabled. Data has been published ('data_published'), confirming exfiltration of what is likely to include regulated PII and protected health information at scale.The ransomware group 'pear' claims to have attacked Catholic Charities of the Diocese of Albany and has published data ('data_published' status), suggesting confirmed exfiltration of organizational data. No ransom amount or specific data size was stated in the post.
Data the group says was taken
AI dossier — extracted from the leak post- Organizational records
- Client/beneficiary personal information
- HIPAA-regulated health and care coordination data
- Employee records
- Financial records
What the group claims
Catholic Charities of the Diocese of Albany is one of the largest, private, social service agencies in the region
Sources
Source
Indexed 10 months agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

