Ransomware victim disclosure
← All victimsThe Egyptian Tax Authority (ETA)
Claimed by Moneymessage · listed 2 years ago
Status timeline
- ListedNov 17, 2024
- Data leakeddate unknown
At a glance
- Group
- Moneymessage
- Status
- Data leaked
- Country
- Egypt
- Sector
- Government
- Listed on leak site
- Nov 17, 2024
About the victim
AI dossier — public-source company profileThe Egyptian Tax Authority (ETA) is the governmental body responsible for tax administration in Egypt. It oversees collection of income tax, corporate tax, and value-added tax (VAT), and works to modernize tax procedures and provide taxpayer services.
- Industry
- Government - Tax Administration
- Address
- Cairo, Egypt
Attack summary
Severity: high — Confirmed breach of critical government tax administration infrastructure with access to sensitive taxpayer data at national scale, though specific proof of exfiltration is not detailed in the post.The Moneymessage group claims to have compromised the Egyptian Tax Authority. The leak post provides no specific details on what data was exfiltrated or operational impact.
Data the group says was taken
AI dossier — extracted from the leak post- Tax administration records
- Taxpayer information
- Government systems data
Original description
AI-summarised, not from the leak postThe Egyptian Tax Authority (ETA) is the governmental body responsible for tax administration in Egypt. It oversees the implementation and collection of various taxes, including income tax, corporate tax, and value-added tax (VAT). The ETA aims to enhance compliance, improve tax revenue, and support economic development through efficient tax policies and systems. It also works to modernize tax procedures and provide taxpayer services.
Sources
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

