Ransomware victim disclosure
← All victimsAuto-Motion Shade Inc.
listed as automotionshade.com · Claimed by ALPHV/BlackCat · listed 3 years ago
Status timeline
- ListedJan 11, 2024
- Data leakeddate unknown
At a glance
- Group
- ALPHV/BlackCat
- Status
- Data leaked
- Country
- Canada
- Sector
- Business Services
- Listed on leak site
- Jan 11, 2024
About the victim
AI dossier — public-source company profileAuto-Motion Shade Inc. manufactures specialty motorized and manual shading systems for the transportation, RV, construction, and agricultural vehicle sectors. Operating for over 25 years, they serve OEMs and end-users globally with products including cellular shades, solar roller shades, control systems, and entry door screens designed for coaches, buses, trucks, trains, limousines, and recreational vehicles.
- Industry
- Manufacturing – Specialty Shading Systems & Components
Attack summary
Severity: medium — Data has been published by the threat actor (disclosed status: data_published), confirming exfiltration. However, no specific sensitive data categories (PII, financial records, designs) are enumerated in the leak post, and no proof files or screenshots are quantified. Without evidence of regulated data or critical operational impact, severity is medium.ALPHV/BlackCat claims to have attacked Auto-Motion Shade Inc. The group has published data from the victim but the specific nature of exfiltration (data types, volumes) and whether encryption occurred are not detailed in the available post excerpt.
What the group claims
Auto-Motion Shade Inc. is dedicated to the manufacturing of specialty shading systems for the Transportation, RV and Con/Ag industry.
Sources
- Victim siteautomotionshade.com
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

