Ransomware victim disclosure
← All victimsProjekt Alp
listed as projektalp.ch · Claimed by Abyss · listed 2 years ago
Status timeline
- ListedOct 29, 2024
- Data leakeddate unknown
At a glance
- Group
- Abyss
- Status
- Data leaked
- Country
- Switzerland
- Sector
- Business Services
- Listed on leak site
- Oct 29, 2024
- Data size
- 29 GB
- Ransom demanded
- $50
About the victim
AI dossier — public-source company profileProjekt Alp is a Swiss non-profit organization providing supervised residential placements for clients with substance abuse, mental health, and psychiatric needs in agricultural host families across the cantons of Bern, Solothurn, Freiburg, and Lucerne. The organization offers both long-term residential care and crisis intervention placements, emphasizing therapeutic farm-based treatment modalities.
- Industry
- Mental Health & Addiction Treatment Services
Attack summary
Severity: critical — The target is a mental health and addiction treatment facility holding sensitive client data (psychiatric/medical history, substance abuse treatment records). Such information is regulated under Swiss data protection law and equivalent standards. Exfiltration at scale of PII and health records from a care facility constitutes critical exposure regardless of proof count.The Abyss ransomware group claims to have exfiltrated 29 GB of uncompressed data from Projekt Alp. The leak post does not explicitly state whether encryption occurred; the focus is on data exfiltration and publication.
Data the group says was taken
AI dossier — extracted from the leak post- Client records and personal files
- Administrative documents
- Financial records
- Staff information
- Operational communications
What the group claims
Project Alp offers professionally accompanied individual places in suitable host families in agricultural establishments in the cantons of Bern, Solothurn, Fribourg and Lucerne for longer-term stays and time out placements in crisis situations.
The leak post
captured from the group's site```
let data = [
{
'title' : 'thinlinetech.com',
'short' : 'thinlinetech.com 29Gb uncompressed data',
'full' : 'Thinline Technologies <br>' +
'Thinline Technologies offers reliable IT consulting and expert computer and network support services to businesses in the Baltimore metro area.<br> They specialize in network administration, technology planning, and help desk services, focusing on increasing productivity and profitability for small to mid-size businesses.<br>'+
'password: 6oGfyIRISQmmI3Ge2kEeyu7hbzONONEFpkcnhC1S4Ygk4iSpw4RRxDXY1uk9xeyUXOmg7UOuZvGekRc9cs8E61LWKdI08uv0kUyC4V6YxaETtrhniAtKD9t7FQ2qTFYi<br>'+
'Link â„–1 Filelist',
'links' : [
"http://zngbsq66uwem4qzyxpqb5rjo2xebnbwdku27nhmquryx6ljnbbedhiad.onion/thinline.lst.zip",
"http://zngbsq66uwem4qzyxpqb5rjo2xebnbwdku27nhmquryx6ljnbbedhiad.onion/thinline.rar"
]
},
{
'title' : 'crownlaboratories.com',
'short' : 'crownlaboratories.com 8Tb uncompressed data',
'full' : 'Crown Laboratories <br>' +
'Crown Laboratories, founded in 2000 and based in Johnson City, TN, provides pharmaceutica…Screenshot of the leak post

Sources
- Victim siteprojektalp.ch
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

