Ransomware victim disclosure
← All victimsCollins Aerospace
listed as Colins Aerospace / RTX.com · Claimed by Everest · listed 9 months ago
Status timeline
- ListedOct 17, 2025
- Data leakeddate unknown
At a glance
- Group
- Everest
- Status
- Data leaked
- Country
- United States
- Sector
- Manufacturing
- Listed on leak site
- Oct 17, 2025
About the victim
AI dossier — public-source company profileCollins Aerospace, a subsidiary of RTX Corporation (formerly Raytheon Technologies), is a major aerospace and defense company headquartered in Charlotte, North Carolina. It designs, manufactures, and services aerospace systems including avionics, aircraft interiors, propulsion systems, and mission systems for commercial and military customers worldwide. The company employs approximately 70,000 people globally and serves airlines, defense agencies, and original equipment manufacturers.
- Industry
- Aerospace & Defense Components Manufacturing
- Employees
- 10000+
- Founded
- 2018
Attack summary
Severity: critical — Collins Aerospace is a major defense and aerospace contractor under RTX; exfiltration of its database likely includes sensitive regulated data such as defense contracts, proprietary aerospace systems information, employee PII, and potentially export-controlled technical data. The disclosed status is 'data_published' confirming actual data release, and the post references a linked security failure impacting critical aviation infrastructure at multiple major airports.The Everest ransomware group claims to have exfiltrated a database from Collins Aerospace (RTX.com) and published it, with separate posts suggesting the group also disclosed details of a security failure linked to Collins Aerospace affecting major airports including Heathrow and Brussels.
Data the group says was taken
AI dossier — extracted from the leak post- Corporate database
- Potentially aviation/flight systems-related data
- Internal company records
Original description
AI-summarised, not from the leak postN/A
The leak post
captured from the group's site© 2026, All rights reserved Citizens Bank - Database Leaked Evaluate a Norstella company - Database Leaked Studio Marchi - Studio Professionale Associato - Database Leaked Super AI - Database Leaked Complete Aircraft Group - Database Leaked Umiles Group - Database Leaked K Subsea Group - Database Leaked Parque Eólico Toabré - Database Leaked PT Brantas Abipraya - Database Leaked Straight Line Logistics - Database Leaked First Priority Group - Database Leaked Hyundai Elevator - Database Leaked UD Trucks - Database Leaked McDonalds India - Database Leaked Tsunami Tsolutions - Database Leaked Atlas Air: MUSE INSECURE - Database Leaked Iron Mountain - Database Leaked Hosowaka Micron Group - Database Leaked Shinwa Co Ltd - Database Leaked SIGMA Processing Group - Database Leaked Acu Trans Solutions LLC - Database Leaked GIBSIN Engineers - Database Leaked ASRock Rack - Database Leaked Reeves Information Technology - Database Leaked WANCHI STEEL INDUSTRIAL - Database Leaked GC Accounting - Database Leaked National Money Mart Company - Database leaked Virginia Records - Database Leaked Morgan Records Management - Database leaked ELC Electroconsult SpA - Databas…
Sources
Source
Indexed 9 months agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

