Ransomware victim disclosure
← All victimsADULLACT
Claimed by Fog · listed 1 year ago
Status timeline
- ListedFeb 13, 2025
- Data leakeddate unknown
At a glance
- Group
- Fog
- Status
- Data leaked
- Country
- France
- Sector
- Technology
- Listed on leak site
- Feb 13, 2025
About the victim
AI dossier — public-source company profileADULLACT is a French association that develops and maintains FusionForge, a cooperative software development platform. It hosts 748 open-source and public-sector software projects with 17,063 registered users, primarily serving local authorities, administrations, healthcare, education, and social services across France.
- Industry
- Software Development & IT Services for Public Administration
Attack summary
Severity: high — Confirmed exfiltration of source code and user data from a major public-sector software forge serving French local authorities and administrations. Potential exposure of projects and credentials used by government and healthcare organizations creates significant operational and security risk.The Fog group claims to have accessed ADULLACT's GitLab instance and extracted data including projects Omydoo and Ayomi. The post indicates data exfiltration but provides limited detail on the scope or nature of compromised information.
Data the group says was taken
AI dossier — extracted from the leak post- GitLab repositories
- Source code (748 projects)
- User account data (17,063 users)
- Project metadata
What the group claims
Extract from Gitlabs: Omydoo, Ayomi, ADULLACT- ADULLACT is a French association that develops and promotes a repository of free software for local authorities and administrations.
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

