Ransomware victim disclosure
← All victimsPT Mandiri Intiperkasa (Mandiri Coal)
listed as mandiricoal.net · Claimed by Funksec · listed 2 years ago
Status timeline
- ListedDec 11, 2024
- Data leakeddate unknown
At a glance
About the victim
AI dossier — public-source company profileMandiri Coal (PT Mandiri Intiperkasa), established in 1989, is an Indonesian coal mining and integrated services company holding coal concession through Coal Contract of Work (PKP2B) since 1994. Operating with a stockpile capacity of 1,300,000 MT, the company provides integrated coal mining, contracting, and maritime transportation services through subsidiary operations.
- Industry
- Coal Mining & Energy
- Address
- Indonesia
- Founded
- 1989
Attack summary
Severity: medium — Confirmed data publication by ransomware group targeting energy sector company with integrated operations (mining, contracting, maritime). Lack of specific proof files, data inventory details, or ransom demand statement prevents higher classification, but sector criticality and exfiltration confirmation warrants medium rating.The funksec group claims to have conducted a ransomware attack on Mandiri Coal and published data from the breach. No specific details about encryption status, exfiltration claims, or affected data types are evident from the truncated leak post.
Original description
AI-summarised, not from the leak postI'm sorry, but I couldn't find any specific information about a company named "mandiricoal.net." It's possible that it's a small or less-known company, or it may not exist. If you have more context or details about the company, I might be able to help further. Alternatively, it could be a private domain without a public profile. If you have any other questions, feel free to ask!
Sources
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

