Ransomware victim disclosure
← All victimsInmarsat
listed as inmarsat.com · Claimed by Babuk2 · listed 1 year ago
Status timeline
- ListedMar 22, 2025
- Data leakeddate unknown
At a glance
- Group
- Babuk2
- Status
- Data leaked
- Country
- United Kingdom
- Sector
- Telecommunication
- Listed on leak site
- Mar 22, 2025
About the victim
AI dossier — public-source company profileInmarsat is a satellite communications company established in 1979 by the International Maritime Organization, providing maritime, aviation, and enterprise connectivity solutions. The company operates a global satellite fleet delivering broadband and narrowband services for vessel operations, crew welfare, safety communications, and critical business applications. Inmarsat is now part of Viasat, Inc.
- Industry
- Satellite Communication & Maritime Connectivity
- Founded
- 1979
Attack summary
Severity: medium — Inmarsat is a critical infrastructure provider in maritime and aviation sectors; however, the leak post provides no evidence of actual data exfiltration, encryption, proof files, or operational impact. The listing alone without substantiation warrants medium severity given the company's strategic importance.The Babuk2 ransomware group lists inmarsat.com as a victim with disclosed data status, but the leak post provided contains only the domain name with no details of the attack method, data exfiltration, encryption claims, or proof materials.
What the group claims
inmarsat.com
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

