Ransomware victim disclosure
← All victimsNaturmælk
listed as naturmaelk · Claimed by Devman · listed 9 months ago
Status timeline
- ListedOct 6, 2025
- Data leakeddate unknown
At a glance
About the victim
AI dossier — public-source company profileNaturmælk is a Danish organic dairy cooperative based in Tinglev, Southern Jutland. The company produces and sells a range of organic dairy products including milk, butter, cheese, cream, yoghurt, and skyr, with a focus on sustainability, animal welfare, and biodynamic farming. Products are sold through retailers and its own webshop (naturost.dk).
- Industry
- Organic Dairy Production & Processing
- Address
- Gerrebækvej 24, 6360 Tinglev, Denmark
Attack summary
Severity: high — Data has been published (not merely threatened), indicating confirmed exfiltration of internal company data. While the specific nature of the exfiltrated data is not detailed, publication without payment constitutes a significant breach of business data.The ransomware group 'devman' claims to have attacked Naturmælk and has published data (disclosed status: data_published), demanding a ransom of 550,000 USD. No specific data volume or file count is detailed in the leak post.
Data the group says was taken
AI dossier — extracted from the leak post- Company internal data
What the group claims
Ransom: 550000 USD
Sources
Source
Indexed 9 months agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

