Ransomware victim disclosure
← All victimsSource Photonics
Claimed by Frag · listed 1 year ago
Status timeline
- ListedApr 4, 2025
- Data leakeddate unknown
At a glance
- Group
- Frag
- Status
- Data leaked
- Country
- United States
- Sector
- Technology
- Listed on leak site
- Apr 4, 2025
About the victim
AI dossier — public-source company profileSource Photonics is a global provider of photonic and optical technology solutions for communications and data connectivity applications. The company operates in the technology sector with international reach.
- Industry
- Photonics & Optical Communications Technology
Attack summary
Severity: critical — Confirmed exfiltration of PII at scale (employee passports and personal documents), combined with sensitive business data (financial statements, NDAs, contracts). Passports and personal identity documents represent regulated personal information; financial data and trade agreements add significant business impact.The frag group claims to have exfiltrated financial statements, partnership agreements, employee personal documents including passports, and corporate NDAs. The group has published proof and set a one-week deadline before making all data freely available.
Data the group says was taken
AI dossier — extracted from the leak post- Financial statements
- Partnership agreements
- Licenses and contracts
- Employee passports
- Personal documents
- Corporate NDAs
- Passport scans
What the group claims
Source Photonics is a leading global provider of innovative and reliable technology that enables communications and data connectivity. Our team was successful in extracting the following documents: Financial statements of the company Partnership agreements, licenses and contracts Employee passports and other personal documents The icing on the cake: Corporate non-disclosure agreements Passport scans You have a week to come to an agreement with us, after that your information will be made freely available.
Sources
- Victim sitesourcephotonics.com
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

