Ransomware victim disclosure
← All victimsdecreditos.com
Claimed by Darkvault · listed 2 years ago
Status timeline
- ListedJun 25, 2024
- Data leakeddate unknown
At a glance
About the victim
AI dossier — public-source company profileDecreditos is an Argentine financial services company specializing in prendary loans (pawn-backed credit) and auto/motorcycle financing through an online platform. Operating for approximately 25 years with a network of over 4,500 affiliated agencies across Argentina, the company has issued over 200,000 loans and serves individuals and business partners seeking accessible credit solutions.
- Industry
- Financial Services - Consumer Lending & Pawn Loans
- Address
- Av. de los Incas 5150, 2do piso, CABA, CP 1427, Argentina
- Founded
- 2000
Attack summary
Severity: medium — Financial services company with broad customer base (200k+ loans issued) and networked partners, indicating significant PII exposure risk. However, the disclosure provides no proof files, no explicit confirmation of exfiltration, and no data inventory—only an announcement. Severity is elevated from 'low' due to regulated financial sector and scale, but cannot be 'high' or 'critical' without evidence of actual data compromise or proof.Darkvault claims to have compromised Decreditos' systems. The group's leak post provides no specific detail on whether data was exfiltrated, encrypted, or both, nor does it list the categories of data targeted or compromised.
What the group claims
Decreditos provides loans through a 100% online process. In constant search and development of new products that allow easy access for all people to the financial sector. The company has branches in more than 4,000 cities and has been in business for 20 years.
Sources
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

