Ransomware victim disclosure
← All victimsCTM India Limited
listed as CTM India Limited motherson INDIA · Claimed by Thegentlemen · listed 2 days ago
Status timeline
- ListedJul 1, 2026
- Data leakeddate unknown
At a glance
- Group
- Thegentlemen
- Status
- Data leaked
- Country
- India
- Sector
- Manufacturing
- Listed on leak site
- Jul 1, 2026
About the victim
AI dossier — public-source company profileCTM India Limited is a metalworking machinery manufacturer based in New Delhi, India, and is part of the Motherson Group. The company produces specialized equipment and forms for industrial manufacturing processes.
- Industry
- Metalworking Machinery Manufacturing
- Address
- New Delhi, Delhi, India
Attack summary
Severity: low — Post contains only a listing/announcement with no proof files, screenshots, or substantive details about data exfiltration or operational impact. No ransom demand or specific threat information disclosed.The threat actor claims to have conducted an unspecified attack on CTM India Limited. No details are provided regarding encryption, exfiltration, or specific data compromised.
What the group claims
***.com/business-directory/company-profiles.ctm_india_limited.c67e34c4f71f7ed11aaf1dc39e0e10a6.html CTM India Limited is located in New Delhi, Delhi, India and is part of the Metalworking Machinery Manufacturing industry. CTM India Limited is associated with the global Motherson Group, focusing on producing specialized equipment and forms essential for industrial manufacturing processes. The company is led by key principal Bimal Dhar and operates within the broader machinery manufacturing sector
Sources
- Victim sitednb.com
Source
Indexed 2 days agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

