Ransomware victim disclosure
← All victimspunjab.gov.in
Claimed by Funksec · listed 1 year ago
Status timeline
- ListedJan 26, 2025
- Data leakeddate unknown
At a glance
- Group
- Funksec
- Status
- Data leaked
- Country
- India
- Sector
- Public Sector
- Listed on leak site
- Jan 26, 2025
About the victim
AI dossier — public-source company profilePunjab.gov.in is the official online portal of the Government of Punjab, India. It provides comprehensive information about government departments, initiatives, services, and policies, along with digital services including bill payments, applications, and complaint filing to enhance transparency and citizen convenience.
- Industry
- Public Sector – Government
- Address
- Punjab, India
Attack summary
Severity: high — Compromise of a state government portal represents critical infrastructure exposure and potential access to citizen PII, administrative records, and government operations data. However, without published proof or confirmed data exfiltration details, severity is assessed as high rather than critical.FunkSec claims to have compromised punjab.gov.in. The leak post provides no specific details about what data was exfiltrated, encrypted, or the scope of the attack.
Data the group says was taken
AI dossier — extracted from the leak post- Government records
- Citizen data
- Administrative systems
Original description
AI-summarised, not from the leak postPunjab.gov.in is the official online portal of the Government of Punjab in India. The website is designed to provide a comprehensive source of information about the government's various departments, initiatives, services, and policies. It offers online services like bill payments, applications, and complaints. It strives to enhance the government's transparency and the convenience of citizens, facilitating various digital services under one platform.
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

