Ransomware victim disclosure
← All victimsTEALCA
listed as tealca.com · Claimed by LockBit · listed 7 months ago
Status timeline
- ListedDec 26, 2025
- Data leakeddate unknown
At a glance
- Group
- LockBit
- Status
- Data leaked
- Country
- Venezuela
- Sector
- Transportation/Logistics
- Listed on leak site
- Dec 26, 2025
About the victim
AI dossier — public-source company profileTEALCA is a Venezuelan company with over 40 years of experience specializing in the shipment and distribution of packages, parcels, and cargo. It operates more than 110 offices across Venezuela for domestic logistics and maintains international storefronts in the United States, Spain, and Panama, as well as alliances across South America. The company serves both individual and corporate clients with national, international, and door-to-door delivery services.
- Industry
- Courier & Parcel Delivery / Logistics
Attack summary
Severity: high — Data has been published (data_published status) by LockBit, confirming exfiltration. As a logistics operator handling shipment records for a large national and international customer base, the exposed data likely includes customer PII and business records at meaningful scale, warranting a high severity rating.LockBit claims to have attacked TEALCA, and the disclosure status is listed as data_published, indicating that exfiltrated data has been released. The leak post references shipment and distribution operations as the context for the stolen data.
Data the group says was taken
AI dossier — extracted from the leak post- Shipment and logistics records
- Customer parcel and tracking data
- Corporate client information
- Internal business documents
What the group claims
TEALCA is a Venezuelan company specializing in the shipment and distribution of packages, cargo, and...
Sources
- Victim sitetealca.com
Source
Indexed 7 months agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

