Ransomware victim disclosure
← All victimsЗАО «КРОК инкорпорейтед»
listed as croc.ru · Claimed by Werewolves · listed 3 years ago
Status timeline
- ListedDec 20, 2023
- Data leakeddate unknown
At a glance
- Group
- Werewolves
- Status
- Data leaked
- Country
- Russia
- Sector
- Technology
- Listed on leak site
- Dec 20, 2023
About the victim
AI dossier — public-source company profileКРОК is a Russian IT services company founded in 1992 that provides system integration, enterprise software products, managed B2B services, and emerging technology solutions (Big Data, blockchain, AI, IoT, robotics, machine learning). The company operates its own data center network and offers cloud services.
- Industry
- IT Services & System Integration
- Founded
- 1992
Attack summary
Severity: high — Confirmed exfiltration of confidential data from a major Russian IT infrastructure provider with 30+ years of operations serving critical enterprises across sectors. The company's access to client systems and data centers elevates risk of downstream compromise.The werewolves group claims to have exfiltrated confidential data from КРОК. The group states data has been compromised, downloaded, and securely stored on their controlled backup servers. Negotiations are reported to be ongoing.
Data the group says was taken
AI dossier — extracted from the leak post- confidential business data
- company information
What the group claims
ЗАО «КРОК инкорпорейтед» — российская компания, связанная с рынком информационных технологий. Работает на рынке c 1992 года и занимается предоставлением услуг в области системной интеграции, тиражируемых продуктов, управляемых B2B-сервисов, перспективных сквозных технологий (Big Data, блокчейн, искусственный интеллект, интернет вещей, роботизация, машинное обучение). Компания владеет собственной сетью дата-центров и работает на рынке облачных сервисов и услуг ЦОД.Конфиденциальные данные скомпрометированы,информация выгружена и надежно сохранена на резервных и подконтрольных группе серверах.Ведутся переговоры.170000$.
Sources
- Victim sitecroc.ru
- Leak posthttps://werewolves.pro/en/maritimebank-com.html
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

