Ransomware victim disclosure
← All victimsGCA Nederland
Claimed by Ransomhouse · listed 2 years ago
Status timeline
- ListedFeb 26, 2024
- Data leakeddate unknown
At a glance
- Group
- Ransomhouse
- Status
- Data leaked
- Country
- Netherlands
- Sector
- Transportation/Logistics
- Listed on leak site
- Feb 26, 2024
- Data size
- 743 GB
- Ransom demanded
- $740
About the victim
AI dossier — public-source company profileGCA Nederland is part of Groupe Charles André, a pan-European logistics provider specializing in transport and logistics of liquid chemicals, gas, and liquid food products. Based in the Netherlands near Rotterdam and Antwerp ports, the company offers multimodal transport, depot handling, and on-site logistics services across Europe.
- Industry
- Transportation & Logistics (Liquid Chemicals & Food Products)
Attack summary
Severity: medium — Data exfiltration of 743 GB confirmed; transportation/logistics sector handles customer supply chain data but no regulated personal data (PII, medical, financial) explicitly mentioned. Operational disruption to logistics operations is possible but not confirmed.Ransomhouse claims to have encrypted GCA Nederland's systems. The group states 743 GB of data was exfiltrated, though the leak post provided appears to be a generic threat dashboard listing multiple victims rather than specific details about GCA Nederland's data.
Data the group says was taken
AI dossier — extracted from the leak post- Business operations data
- Customer information
- Logistics records
What the group claims
GCA Nederland is a part of the pan European logistics provider Groupe Charles Andre. As specialists in the transport of dangerous goods . Our customers can get all they need in one stop (shop). We offer multiple services at one place to serve our customers in the best way. Also provides you with an approach of the supply chain that is both local and global, making for a perfect fit to our clients’ most specific needs.
The leak post
captured from the group's site```
{"data":[{"id":"a1894b76b7004c75a3a0845799af49956592e3d9","display":"animated","header":"HOT NEWS","info":" Trellix is a global cybersecurity company.","url":"","sort":1,"views":"436242"},{"id":"336b257f582b17573c97578efd4b22762bf77344","sort":2,"header":"Trellix (McAfee & FireEye)","url":"https://www.trellix.com/","private":"false","revenue":"1.5-2 B$","employees":"5000","info":"Trellix is a global cybersecurity company formed from the October 2021 merger of McAfee Enterprise and FireEye. It provides services to over 50,000 business and government customers worldwide, protecting more than 200 million endpoints. The companys open and native extended detection and response (XDR) platform helps organizations confronted by todays most advanced threats gain confidence in the protection and resilience of their operations. Trellix, along with an extensive partner ecosystem, accelerates technology innovation through machine learning and automation to empower over 40,000 business and government customers with living security","statusDate":"DEPENDS ON YOU","status":"EVIDENCE","published":"NOT YET","action":"Encrypted","actionDate":"17/04/2026","volume":"~","content":"cybersecurity.html"…Sources
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

