Ransomware victim disclosure
← All victimsSwipe.bg
Claimed by Ransomed · listed 3 years ago
Status timeline
- ListedSep 4, 2023
- Data leakeddate unknown
At a glance
- Group
- Ransomed
- Status
- Data leaked
- Country
- Bulgaria
- Sector
- Retail & Consumer
- Listed on leak site
- Sep 4, 2023
- Ransom demanded
- $50.000
About the victim
AI dossier — public-source company profileSwipe.bg is a Bulgarian online marketplace known for offering products at low prices. It operates as a consumer-facing e-commerce platform serving customers in Bulgaria. No further detail about company size or founding date is publicly available from the provided data.
- Industry
- Online Marketplace & E-Commerce
Attack summary
Severity: critical — The threat actor claims exfiltration of regulated PII at scale, including Social Security Numbers, physical addresses, and phone numbers belonging to customers of a marketplace, constituting a high-sensitivity personal data breach affecting potentially a large number of individuals.The group 'Ransomed' claims to have exfiltrated all data from Swipe.bg, including user data, customer chat logs, Social Security Numbers (SSNs), phone numbers, and addresses, demanding a $50,000 ransom.
Data the group says was taken
AI dossier — extracted from the leak post- User account data
- Customer chat logs
- Social Security Numbers (SSNs)
- Phone numbers
- Physical addresses
What the group claims
We have successfuly obtained all data from Swipe.bg A online marketplace known for its cheap prices. Data we obtained: Userdata,Customer chats,SSNs,Numbers,Addresses and moreWe require a ransom of $50,000.
Sources
- Victim siteswipe.bg
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

