Ransomware victim disclosure
← All victimsKravitz
listed as stage.kravitz.co.il · Claimed by Toufan · listed 3 years ago
Status timeline
- ListedDec 19, 2023
- Data leakeddate unknown
At a glance
- Group
- Toufan
- Status
- Data leaked
- Country
- Israel
- Sector
- Technology
- Listed on leak site
- Dec 19, 2023
About the victim
AI dossier — public-source company profileKravitz (kravitz.co.il) appears to be an Israeli technology or digital services company, inferred from the domain's country-code TLD (.co.il) and sector classification. The 'stage' subdomain suggests the target was a staging or development environment rather than the production site. No further details are available from the leak post or public site content.
- Industry
- Technology (Web/Digital Services)
Attack summary
Severity: medium — Data is listed as published (data_published status), indicating some level of exfiltration claim by the group; however, no leak post content, proof files, data size, or details about the sensitivity of the data are available to escalate to high or critical. The target appears to be a staging environment, which may limit scope.The Toufan ransomware group claims to have attacked a staging environment associated with Kravitz (stage.kravitz.co.il) and lists the disclosure status as data_published, implying data was exfiltrated and published. No specific details about the nature of the data or encryption activity are available from the captured post.
Sources
- Victim sitestage.kravitz.co.il/
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

