Ransomware victim disclosure
← All victimsThe Diesel-Electric Group
listed as diesel-electric.co.za · Claimed by LockBit · listed 5 months ago
Status timeline
- ListedMar 1, 2026
- Data leakeddate unknown
At a glance
- Group
- LockBit
- Status
- Data leaked
- Country
- South Africa
- Sector
- Energy
- Listed on leak site
- Mar 1, 2026
About the victim
AI dossier — public-source company profileThe Diesel-Electric Group is a South African company operating as an authorised Bosch Service Dealer network, e-CAR Service Centers, and affiliated with Bosch SA. The group provides diesel-electric automotive and industrial equipment repair, diagnostics, and servicing across South Africa.
- Industry
- Automotive & Industrial Equipment Services
Attack summary
Severity: high — Data has been published (disclosed status: data_published), confirming exfiltration of business data from a multi-brand automotive services group with multiple operating entities; scope of sensitive data (customer PII, financial records) is plausible but not fully detailed.LockBit claims to have attacked The Diesel-Electric Group, including its Bosch Service Dealer and e-CAR Service Center operations, with data published indicating exfiltration of company data. The disclosure status is marked as data_published, suggesting stolen data has been released.
Data the group says was taken
AI dossier — extracted from the leak post- Company business data
- Potentially customer records
- Potentially financial records
What the group claims
The Diesel-Electric Group including Bosch Service Dealers, e-CAR Service Centers and Bosch SA togeth...
Sources
- Victim sitediesel-electric.co.za
Source
Indexed 5 months agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

