Ransomware victim disclosure
← All victimsBombardier Recreational Products (BRP) - SOURCE CODES
Claimed by Ransomexx · listed 4 years ago
Status timeline
- ListedOct 1, 2022
- Data leakeddate unknown
At a glance
- Group
- Ransomexx
- Status
- Data leaked
- Country
- Canada
- Sector
- Automotive
- Listed on leak site
- Oct 1, 2022
About the victim
AI dossier — public-source company profileBombardier Recreational Products (BRP) is a Canadian manufacturer headquartered in Valcourt, Quebec, specialising in powersports vehicles including Ski-Doo snowmobiles, Sea-Doo personal watercraft, Can-Am ATVs and side-by-sides, and Lynx snowmobiles. The company operates globally with manufacturing plants across North America, Europe, and Latin America. BRP employs over 20,000 people worldwide and sells products in more than 120 countries.
- Industry
- Powersports & Recreational Vehicles Manufacturing
- Address
- 726 Saint-Joseph Street, Valcourt, Quebec, J0E 2L0, Canada
- Employees
- 10000+
- Founded
- 1942
Attack summary
Severity: high — Confirmed exfiltration and publication of proprietary source code from multiple internal BRP software repositories, including dealer-facing, factory-floor, and SAP-integrated systems. This constitutes significant intellectual property loss with potential to expose internal infrastructure, supply chain logic, and proprietary vehicle/parts systems, though no regulated personal data (PII/medical/financial) is explicitly evidenced.RansomExx claims to have exfiltrated source code from BRP's internal software repositories, publishing repository names spanning dealer/shop APIs, mobile app backends, remote connection management tooling, factory tracking systems, ALM/PLM tooling, EPC, RIM, and SAP-integrated applications. No encryption claim is explicitly stated; the disclosure is framed as a source-code leak.
Data the group says was taken
AI dossier — extracted from the leak post- ApprenticeShop API source code
- ApprenticeShop Mobile App Backend source code
- Remote Connection Manager tool source code
- Factory/production tracking system source code (Usine 9)
- Application Lifecycle Management (ALM) project data
- Electronic Parts Catalogue (EPC) source code
- Retail Inventory Management (RIM) source code
- SAP Bench Status Mobile App source code
The group's post references roughly 8 proof files.
What the group claims
Here are some codes from BRP's repos. atgk.brp.ApprenticeShopAPI, atgk.brp.ApprenticeShopMobileAppBackend, atgk.brp.Tools.RemoteConnectionManager, BRP - Usine 9 - Tracking, BRP-PP-ALM, EPC, RIM, SAP-BenchStatusMobileApp.
Sources
Source
Indexed 4 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

