Ransomware victim disclosure
← All victimsCvlan
Claimed by Cyclops · listed 3 years ago
Status timeline
- ListedJul 23, 2023
- Data leakeddate unknown
At a glance
- Group
- Cyclops
- Status
- Data leaked
- Country
- Italy
- Sector
- Technology
- Listed on leak site
- Jul 23, 2023
- Ransom demanded
- $5M
About the victim
AI dossier — public-source company profileCvlan Srl is an Italian company operating in the Information Technology and Services industry. It employs between 21 and 50 people and generates estimated annual revenue of $5M–$10M. The company is based in Italy and operates under the domain cvlan.it.
- Industry
- Information Technology & Services
- Employees
- 21-50
Attack summary
Severity: high — Data has been confirmed as published (disclosed status: data_published) with a public download link, indicating successful exfiltration of business data from an IT services firm; scope of sensitive content is unknown but publication represents a significant business data exposure.The Cyclops ransomware group claims to have exfiltrated data from Cvlan Srl and has published a link to the stolen data via AnonFiles, indicating confirmed data exfiltration with public disclosure.
Data the group says was taken
AI dossier — extracted from the leak post- Exfiltrated company files (published archive)
The group's post references roughly 1 proof file.
What the group claims
Cvlan( Srl is a company that operates in the Information Technology and Services industry. It employs 21-50 people and has $5M-$10M of revenue.Site:========www.cvlan.itData:========https://anonfiles.com/q659Yeyczb/lift_me_zip
Sources
- Victim sitecvlan.it
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

