Ransomware victim disclosure
← All victimsBellsonica Corporation
listed as bellsonica.co.jp · Claimed by NoEscape · listed 3 years ago
Status timeline
- ListedOct 3, 2023
- Data leakeddate unknown
At a glance
- Group
- NoEscape
- Status
- Data leaked
- Country
- Japan
- Sector
- Technology
- Listed on leak site
- Oct 3, 2023
About the victim
AI dossier — public-source company profileBellsonica Corporation (bellsonica.co.jp) is a Japanese manufacturer primarily known as a supplier of pressed steel parts and automotive components, operating within Japan's automotive supply chain. The company is associated with the Toyota group of suppliers. Its operations are concentrated in Japan, serving major automotive OEMs.
- Industry
- Automotive Parts Manufacturing
Attack summary
Severity: high — The disclosure status is data_published, meaning exfiltrated data has been released publicly. As an automotive parts manufacturer linked to major OEMs, leaked data likely includes sensitive business, engineering, and employee information. The confirmed publication of data elevates this beyond medium severity.The NoEscape ransomware group claims to have attacked Bellsonica, with the disclosure status recorded as data_published, indicating that data exfiltrated from the company has been released or made available on the group's leak site. No further details on specific data categories or volume were captured in the leak post.
Data the group says was taken
AI dossier — extracted from the leak post- Corporate business data
- Potentially proprietary manufacturing data
- Employee records (inferred)
- Financial documents (inferred)
Sources
- Victim sitebellsonica.co
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

