Ransomware victim disclosure
← All victimsBrontoo Technology Solutions India Private Limited
listed as Brontoo Technology Solutions · Claimed by Ransomexx · listed 2 years ago
Status timeline
- ListedAug 10, 2024
- Data leakeddate unknown
At a glance
- Group
- Ransomexx
- Status
- Data leaked
- Country
- India
- Sector
- Technology
- Listed on leak site
- Aug 10, 2024
- Records
- 146123 users
About the victim
AI dossier — public-source company profileBrontoo Technology Solutions is an Indian fintech company that developed Osta, a unified digital payment platform offering secure transactions without traditional cards or wallets. The platform uses one-time digital numbers and QR codes for payments at merchants, ATMs, and partner networks, and provides services including bill payments, bank transfers, mobile recharges, and FASTag management.
- Industry
- Financial Technology & Digital Payments
Attack summary
Severity: high — Confirmed exfiltration of a large user database (146K+ records) from a financial services platform, exposing potential PII and payment-related information. Data publication and regulatory compliance breach claims elevate risk despite no ransom demand stated.Ransomexx claims to have exfiltrated a database containing records of 146,123 Osta platform users. The group has published the data and made a commentary on PCI DSS compliance limitations.
Data the group says was taken
AI dossier — extracted from the leak post- User database records (146,123 users)
- Payment platform user information
- Customer payment credentials or transaction data (inferred)
What the group claims
OstaApp, developed by Brontoo Technology Solutions India Private Limited, is a digital payment platform designed to offer a secure, fast, and convenient way to make transactions without relying on traditional cards, wallets, or point-of-sale (POS) systems. The platform generates a unique, one-time-use digital number or QR code, which users can utilize for payments at registered merchants, partner ATMs, and more. Database with 146123 users leaked. Proof of PCI DSS compliance is not a guaranteed solution.
Sources
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

