Ransomware victim disclosure
← All victimsMarlex
Claimed by Rhysida · listed 2 hours ago
Status timeline
- Listed
Jun 7, 2026
- Data leaked
At a glance
- Group
- Rhysida
- Status
- Data leaked
- Listed on leak site
- Jun 7, 2026
- Data size
- 973 GB
- Records
- 174 files
About the victim
AI dossier — public-source company profileMarlex is a company whose identity and operational details are not publicly available. The ransomware operator has published 973 GB of alleged exfiltrated data.
Attack summary
Severity: high — Confirmed exfiltration of 973 GB of data including HR records (containing PII). Data published to public access. Lack of clearnet site and minimal public information prevents higher confidence but scale and HR data exposure warrant 'high' severity.Rhysida claims to have exfiltrated 973 GB of data (778,174 files) from Marlex. The group states all files were uploaded to public access. A news headline mentions exposure of corporate HR records.
Data the group says was taken
AI dossier — extracted from the leak post- HR records
- Corporate files
What the group claims
Marlex Data Breach Exposes Corporate HR Records After Rhysida Ransomware Attack.
The leak post
captured from the group's siteRight now we don't have any companies whose data can be bitted on auction. We are actively working to expose the next unscrupulous company that doesn't care about the security of their network and their employees' data. Stay tuned and we'll show you more companies whose networks need more careful administration. IDS Group is an award-winning multi-discipline design, engineering, and management consulting firm based in Southern California. Data Catalog: 973 Gb, 778 174 Files All files was uploaded to public access, data hunters, enjoy Stuttgart is the capital city of Baden-Wurttemberg in southwestern Germany. Data Catalog: 185 Gb, 383 710 Files All files was uploaded to public access, data hunters, enjoy We will post news about our company hereIf you see news about us, send them to us and we will post it here Marlex Data Breach Exposes Corporate HR Records After Rhysida Ransomware Attack Journalists, Recoveries, Fans, fill out the form and you will be contacted for collaboration Share your contact details and leave a message We'll get back to you soon (Or maybe not, depending on who you are) How you can buy BTC Buy btc in 15 minutes,easy and safe Buy btc via debit card orbank a…
Data the group says was taken
- HR Records
Screenshot of the leak post
Sources
Source
Indexed 2 hours agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.