Ransomware victim disclosure
← All victimsagroprime
Claimed by Dragonforce · listed 4 days ago
Status timeline
- ListedJun 29, 2026
- Data leakeddate unknown
At a glance
- Group
- Dragonforce
- Status
- Data leaked
- Country
- Brazil
- Listed on leak site
- Jun 29, 2026
About the victim
AI dossier — public-source company profileAgroprime is a Brazilian SaaS company specializing in workforce management and agribusiness automation software. Their platform provides real-time personnel monitoring, attendance tracking, field productivity optimization, agricultural ERP functionality, and harvest traceability via mobile apps and QR codes for agricultural and other industries.
- Industry
- Agricultural Software & SaaS
Attack summary
Severity: medium — Data published status confirms exfiltration, but no proof files/screenshots are advertised, no specific sensitive data categories are detailed, and ransom demand is absent. SaaS platform operator likely holds customer data of moderate sensitivity rather than direct regulated PII.DragonForce claims to have developed specialized agribusiness management and field personnel monitoring software for Agroprime. The post indicates data exfiltration but provides no details on scope, data types, or operational impact.
Data the group says was taken
AI dossier — extracted from the leak post- workforce management system data
- field personnel records
- attendance and shift data
- agricultural productivity records
- customer account information
What the group claims
development of specialized software (SaaS) for automating agribusiness management and monitoring field personnel
Sources
Source
Indexed 4 days agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

