Ransomware victim disclosure
← All victimsSilknet
listed as SILKNET COMPANY · Claimed by Medusalocker · listed 2 years ago
Status timeline
- ListedNov 26, 2024
- Data leakeddate unknown
At a glance
- Group
- Medusalocker
- Status
- Data leaked
- Country
- United States
- Sector
- Business Services
- Listed on leak site
- Nov 26, 2024
About the victim
AI dossier — public-source company profileSilknet is a Georgian telecommunications company offering internet, mobile, television, and digital services. The company provides optical and DSL broadband, mobile networks (LTE/4.5G), fixed-line telephony, and bundled service packages to residential and business customers across Georgia.
- Industry
- Telecommunications
Attack summary
Severity: critical — Large-scale exfiltration (4TB+) of customer data, employee information, and identity documents (passports) from a major telecommunications provider constitutes critical exposure of PII and regulated data affecting potentially hundreds of thousands of customers and employees.MedusaLocker claims to have exfiltrated approximately 4TB+ of company data including email databases (~1TB), customer data, and 2023-2024 audit materials. The group is offering the stolen data for sale at $800,000, with additional mention of passports and corporate information in the cache.
Data the group says was taken
AI dossier — extracted from the leak post- company email database
- customer data
- company audit records (2023-2024)
- passports
- corporate data
What the group claims
URL:https://silknet.com https://geocell.ge/ On sale:Company email base(about 1tb)Customer dataCompany audit for 2023\24and more than 3tb of data. Price-$800000 There are a lot of corporate data, passports and other information.
Sources
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

