Ransomware victim disclosure
← All victimsSchwartz Hautmont
listed as Schwartz Hautmont Port Shop · Claimed by Royal · listed 3 years ago
Status timeline
- ListedFeb 24, 2023
- Data leakeddate unknown
At a glance
About the victim
AI dossier — public-source company profileSchwartz Hautmont is a private Spanish corporation founded in 1963 and located at the Port of Tarragona, south of Barcelona. The company specialises in steel construction, manufacturing products such as steel structures and pressure vessels for a range of industrial clients using various metal alloys. Its port location enables the export of large-scale equipment to international markets.
- Industry
- Steel Construction & Industrial Fabrication
- Address
- Avinguda de la Canonja, 9, 43480 Vila-seca, Tarragona, Spain
- Founded
- 1963
Attack summary
Severity: high — Data has been confirmed as published by the Royal group, indicating successful exfiltration of internal business data from an industrial manufacturing company. While the specific data types are unconfirmed, a published data disclosure from a private industrial corporation with international operations warrants a high severity rating.The Royal ransomware group claims to have attacked Schwartz Hautmont and has published data ('data_published' status), indicating exfiltration of company data. The specific data categories and volume were not detailed in the leak post.
Data the group says was taken
AI dossier — extracted from the leak post- Corporate business data
- Potentially internal project/engineering files
- Potentially customer and sales records
- Potentially employee/HR records
What the group claims
Schwartz Hautmont is a private Spanish corporation established in 1963 in Tarragona, South of Barcelona, Spain. The company is in the steel construction business, offering a wide range of products and related services
Sources
- Victim siteshcm.es
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

