Ransomware victim disclosure
← All victimsNK Customer Solutions Ltd
listed as NK Customer Solutions · Claimed by Blacklock · listed 1 year ago
Status timeline
- ListedJun 29, 2025
- Data leakeddate unknown
At a glance
About the victim
AI dossier — public-source company profileNK Customer Solutions Ltd is a nearshore call center and business process outsourcing provider based in North Carolina, United States. The company offers customer service, data entry, billing and collections, order entry, and sales/marketing survey services, with approximately 107 employees and revenue under $5 million.
- Industry
- Business Process Outsourcing & Call Centers
- Employees
- 107
Attack summary
Severity: high — Confirmed data exfiltration from a business process outsourcing firm that handles sensitive customer data (billing, collections, order information) at scale. The company processes data for external clients, creating downstream exposure.Blacklock claims to have encrypted and exfiltrated data from NK Customer Solutions. The group is demanding $5 million ransom and has published data as proof.
Data the group says was taken
AI dossier — extracted from the leak post- Customer service records
- Billing and collections data
- Order entry records
- Sales/marketing survey data
- Business operations files
What the group claims
Business Services North Carolina, United States 107 Employees NK Customer Solutions Ltd offers a range of outsourcing services including customer service, data entry, billing and collections, order entry, and sales/marketing surveys. The company specializes in nearshore call center solutions, providing efficient operations with a focus on high-quality service and rapid deployment. Revenue <$5 Million
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

