Ransomware victim disclosure
← All victimsGEACAM - Empresa Pública de Gestión Ambiental de Castilla-La Mancha SA
listed as www.geacam.es · Claimed by NoEscape · listed 3 years ago
Status timeline
- ListedOct 9, 2023
- Data leakeddate unknown
At a glance
- Group
- NoEscape
- Status
- Data leaked
- Country
- Spain
- Sector
- Government
- Listed on leak site
- Oct 9, 2023
About the victim
AI dossier — public-source company profileGEACAM (Empresa Pública de Gestión Ambiental de Castilla-La Mancha SA) is a state-owned public enterprise of the Castilla-La Mancha regional government in Spain. The company is responsible for environmental management activities in the region, including forestry, wildfire prevention and response, and natural resource management. As a public entity it operates under regional government oversight and handles sensitive environmental and administrative data.
- Industry
- Public Environmental Management & Forestry Services
- Address
- Castilla-La Mancha, Spain
Attack summary
Severity: high — The victim is a public regional government enterprise handling environmental and administrative operations; data_published status confirms exfiltration and public release of data, which likely includes sensitive government and employee records, warranting a high severity rating.The NoEscape ransomware group claims an attack against GEACAM, with the disclosure status recorded as data_published, indicating that exfiltrated data has been released. No specific details on the volume or nature of the published data were captured in the leak post.
Data the group says was taken
AI dossier — extracted from the leak post- Government administrative records
- Environmental management data
- Employee records
- Internal documents
Sources
- Victim sitegeacam.es
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

