Ransomware victim disclosure
← All victimsVV&A - Consultores Financieros y Tributarios Vargas & Vargas
listed as cftvyv.com · Claimed by Dispossessor · listed 2 years ago
Status timeline
- ListedApr 19, 2024
- Data leakeddate unknown
At a glance
- Group
- Dispossessor
- Status
- Data leaked
- Listed on leak site
- Apr 19, 2024
About the victim
AI dossier — public-source company profileVV&A is a Costa Rican financial and tax consulting firm offering services in corporate finance, tax advisory, accounting, auditing, and risk management. Founded by Marco and Guillermo Vargas Siles, the firm serves approximately 2,300 clients and employs 20+ direct staff with over 20 years of market experience.
- Industry
- Financial & Tax Consulting
- Address
- Llorente, Tibás, San José, Costa Rica
- Employees
- 20-40
Attack summary
Severity: medium — Financial and tax consulting firm with regulated client data (2,300+ clients); data published by ransomware group suggests confirmed exfiltration. No operational disruption claimed, no ransom demand noted, and no specific sensitive data categories (e.g., PII volume, government/defence data) confirmed in available evidence.The Dispossessor group claims to have compromised VV&A. The leak post provides minimal detail; the group has published data but no specific attack method or data categories are articulated in the available post excerpt.
Data the group says was taken
AI dossier — extracted from the leak post- financial records
- client information
- tax documents
- corporate advisory files
What the group claims
VVandA
Sources
- Victim sitecftvyv.com
- Leak posthttps://dispossessor.com/blogs/24
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

