Ransomware victim disclosure
← All victimsShengyu Steel
listed as shengyusteel.com · Claimed by Underground · listed 1 year ago
Status timeline
- ListedApr 16, 2025
- Data leakeddate unknown
At a glance
- Group
- Underground
- Status
- Data leaked
- Country
- Taiwan
- Sector
- Manufacturing
- Listed on leak site
- Apr 16, 2025
- Data size
- 353.9 GB
- Ransom demanded
- $431.6M
- Estimated revenue
- $431.6M
About the victim
AI dossier — public-source company profileShengyu Steel is a manufacturing company operating in Taiwan's steel sector. The company operates under the domain shengyusteel.com.
- Industry
- Steel Manufacturing
Attack summary
Severity: high — Large-scale data exfiltration (353.9 GB) from a significant manufacturing operation ($431.6M revenue) with confirmed publication of stolen data. The absence of specific data type details prevents assessment as critical, but the volume and business scale justify high severity.The Underground group claims to have exfiltrated 353.9 GB of data from Shengyu Steel. The group's post references the company's $431.6 million revenue but does not explicitly detail what data categories were stolen or confirm operational encryption.
Data the group says was taken
AI dossier — extracted from the leak post- business records
- operational data
What the group claims
Revenue: $431.6 million Type: Manufacturing Size: 353,9 GBytes
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

