Ransomware victim disclosure
← All victims3SS
Claimed by Fog · listed 1 year ago
Status timeline
- ListedFeb 7, 2025
- Data leakeddate unknown
At a glance
- Group
- Fog
- Status
- Data leaked
- Country
- Germany
- Sector
- Technology
- Listed on leak site
- Feb 7, 2025
About the victim
AI dossier — public-source company profile3SS is an entertainment technology company that develops the 3Ready platform for telcos, pay-TV operators, carmakers, and content partners. With 301 employees worldwide, 15+ years of experience, and partnerships with major brands (Proximus, TELUS, Altibox, Tele2, BMW, Škoda, Geely), the company enables seamless entertainment experiences across multiple screens and in-vehicle systems, serving 68 million users across 51 markets.
- Industry
- Entertainment Technology & In-Car/Pay-TV Platform Software
- Employees
- 301
Attack summary
Severity: high — Confirmed exfiltration of what appears to be source code and development infrastructure from a B2B platform serving 30+ major operators and carmakers. Compromised codebase could enable supply-chain attacks on downstream customers managing 68 million users' entertainment data. No ransom stated and data_published status suggests disclosure without negotiation.The Fog ransomware group claims to have accessed 3SS via a GitLab extract and lists the company alongside Chalmers tekniska högskola and Fligno. The post indicates data exfiltration but provides no detail on encryption, ransom demand, or specific data categories targeted.
Data the group says was taken
AI dossier — extracted from the leak post- GitLab repositories/source code
- Internal infrastructure data
What the group claims
Extract from Gitlabs: Chalmers tekniska högskola, Fligno, 3SS
Sources
- Victim site3ss.tv
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

