Ransomware victim disclosure
← All victimsQcells
listed as q-cells.de · Claimed by Abyss · listed 2 years ago
Status timeline
- ListedAug 2, 2024
- Data leakeddate unknown
At a glance
About the victim
AI dossier — public-source company profileQcells is a solar technology company based in Germany that develops and manufactures high-efficiency photovoltaic modules, energy storage systems, and home energy management solutions. The company has over 20 years of research and development in solar technology and operates through a network of certified installation partners across Germany.
- Industry
- Renewable Energy & Solar Technology
Attack summary
Severity: high — Confirmed exfiltration of 5.4 TB of corporate data from a major renewable energy manufacturer with published proof (downloadable archives and file lists). The large data volume and nature of the company (critical infrastructure in energy sector) elevates risk despite no specific data type confirmation.The Abyss ransomware group claims to have exfiltrated 5.4 TB of uncompressed data from Qcells. The group has published the data on their leak site with file download links and encrypted archives. No encryption or operational disruption details are explicitly stated in the post.
Data the group says was taken
AI dossier — extracted from the leak post- Business documents
- Technical designs or schematics
- Corporate records
- Operational data
What the group claims
q-cells.de 5.4Tb uncompressed data
The leak post
captured from the group's site```
let data = [
{
'title' : 'thinlinetech.com',
'short' : 'thinlinetech.com 29Gb uncompressed data',
'full' : 'Thinline Technologies <br>' +
'Thinline Technologies offers reliable IT consulting and expert computer and network support services to businesses in the Baltimore metro area.<br> They specialize in network administration, technology planning, and help desk services, focusing on increasing productivity and profitability for small to mid-size businesses.<br>'+
'password: 6oGfyIRISQmmI3Ge2kEeyu7hbzONONEFpkcnhC1S4Ygk4iSpw4RRxDXY1uk9xeyUXOmg7UOuZvGekRc9cs8E61LWKdI08uv0kUyC4V6YxaETtrhniAtKD9t7FQ2qTFYi<br>'+
'Link â„–1 Filelist',
'links' : [
"http://zngbsq66uwem4qzyxpqb5rjo2xebnbwdku27nhmquryx6ljnbbedhiad.onion/thinline.lst.zip",
"http://zngbsq66uwem4qzyxpqb5rjo2xebnbwdku27nhmquryx6ljnbbedhiad.onion/thinline.rar"
]
},
{
'title' : 'crownlaboratories.com',
'short' : 'crownlaboratories.com 8Tb uncompressed data',
'full' : 'Crown Laboratories <br>' +
'Crown Laboratories, founded in 2000 and based in Johnson City, TN, provides pharmaceutica…Screenshot of the leak post

Sources
- Victim siteq-cells.de
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

