Ransomware victim disclosure
← All victimsUngerer & Company
listed as ungererandcompany.com · Claimed by Apt73 · listed 2 months ago
Status timeline
- ListedMay 21, 2026
- Data leakeddate unknown
At a glance
About the victim
AI dossier — public-source company profileUngerer & Company is an American manufacturer founded in 1893 that develops and produces flavors, fragrances, and ingredients for the food and perfume industries. The company serves industrial clients in these sectors.
- Industry
- Flavors, Fragrances & Food Ingredients
- Founded
- 1893
Attack summary
Severity: high — Confirmed exfiltration of significant business data (financial reports, internal documents) from an established manufacturing company with 130+ years of operations. Data size of 1 GB and active extortion threat indicate substantial operational and financial risk.APT73 claims to have exfiltrated approximately 1 GB of internal documents, financial reports, and sensitive information from Ungerer & Company. The group is offering the data for sale with a deadline of 2026/05/22, indicating encryption-based extortion with data exfiltration.
Data the group says was taken
AI dossier — extracted from the leak post- internal documents
- financial reports
- sensitive business information
What the group claims
Ungerer & The Company is an American company founded in 1893 that develops and manufactures flavo...
The leak post
captured from the group's siteDeadline: 2026/05/22 19:00:00 UTC +0 Ungerer & The Company is an American company founded in 1893 that develops and manufactures flavors, fragrances, and ingredients for the food and perfume industries. Internal documents, financial reports, sensitive information. Total size: 1 GB. | *Until the files will be available left* | *We always initially offer to buy data by origin company. But we are also ready to consider third-party offers.* | | --- | --- | *If you see that a timer is running in your company's block, you have a chance to avoid a data leak. To do this, you need to write to us in the form and indicate your details. Our support team will contact you shortly and help you. **You must understand that there is no time to think, you must make a decision quickly, the timer has started.** If you see a button at the bottom of your company's publication, this means that all data is publicly available. If you are a customer or employee of a company that has been affected, please contact us and give us the information about yourself that you want removed. We will check what we have related to you and remove it from the leak. **The price depends on the company size and sen…
Sources
Source
Indexed 2 months agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

