Ransomware victim disclosure
← All victimsMěstský úřad Kraslice (City of Kraslice Municipal Office)
listed as kraslice.cz · Claimed by LockBit · listed 7 months ago
Status timeline
- ListedDec 26, 2025
- Data leakeddate unknown
At a glance
- Group
- LockBit
- Status
- Data leaked
- Country
- Czech Republic
- Listed on leak site
- Dec 26, 2025
About the victim
AI dossier — public-source company profileMěstský úřad Kraslice is the municipal office of the City of Kraslice, a local government authority located in the Karlovy Vary Region of the Czech Republic. It administers public services including urban planning, social affairs, environmental protection, finance, transport, and civic registration for the Kraslice municipality. The office operates multiple departments and oversees affiliated schools, cultural centres, and technical services.
- Industry
- Municipal Government Administration
- Address
- Náměstí 28. října 1438, 358 01 Kraslice, Czech Republic
Attack summary
Severity: critical — The victim is a municipal government office holding regulated citizen PII at scale, including social services, child protection (OSPOD), financial, and civic registration data. Data has been confirmed published by the threat actor, meaning exfiltration of sensitive government and citizen records is likely realised.LockBit claims to have attacked the Kraslice municipal office and has published data (disclosed status: data_published), indicating exfiltration of data held by the local government authority. No ransom amount or specific data volume was stated in the post.
Data the group says was taken
AI dossier — extracted from the leak post- Municipal administrative records
- Citizen personal data (PII)
- Financial and budget documents
- Urban planning documents
- Social services records
- Internal correspondence
- Employee records
What the group claims
Městský úřad Kraslice náměstí 28. října 1438 35801 Kraslice Tel.: +420 352 370 411 podatelna@m...
Sources
- Victim sitekraslice.cz
Source
Indexed 7 months agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

