Ransomware victim disclosure
← All victimsElectroCraft, Inc.
listed as electrocraft.com\$190.1M\USA\477GB\100% DISCLOSED · Claimed by Cactus · listed 1 year ago
Status timeline
- ListedMar 6, 2025
- Data leakeddate unknown
At a glance
- Group
- Cactus
- Status
- Data leaked
- Country
- United States of America
- Sector
- Manufacturing
- Listed on leak site
- Mar 6, 2025
About the victim
AI dossier — public-source company profileElectroCraft, Inc. is a global manufacturer of customizable fractional-horsepower electric motors and motion control products, including brushless DC motors, drives, linear actuators, and gearmotors. Their solutions serve industrial, medical, robotics, semiconductor, defense, and transportation markets. The company operates in the United States with international sales presence (EMEA contact listed).
- Industry
- Electric Motors & Motion Control Manufacturing
Attack summary
Severity: high — 477GB of data claimed disclosed at 100% with ransom allegedly paid/waived by Cactus group. Large data volume and confirmed exfiltration with publication indicate significant business and potentially customer data exposure. Manufacturing company serving defense and medical sectors increases sensitivity.The Cactus ransomware group claims to have conducted an attack on ElectroCraft. The victim metadata indicates 100% disclosure status with 477GB of data, though the actual leak post content was not captured.
Data the group says was taken
AI dossier — extracted from the leak post- Business documents
- Technical specifications
- Customer information
- Operational data
Sources
- Victim siteelectrocraft.com
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

