Ransomware victim disclosure
← All victimsColina Financial Advisors Limited
listed as Colina Financial Advisors · Claimed by incransom · listed 10 hours ago
Status timeline
- Listed
Jun 3, 2026
- Data leaked
At a glance
- Group
- incransom
- Status
- Data leaked
- Country
- BS
- Sector
- Financial Services
- Listed on leak site
- Jun 3, 2026
About the victim
AI dossier — public-source company profileColina Financial Advisors Limited (CFAL) is an independent wealth management and investment advisory firm established in 1997 and based in Nassau, The Bahamas. It serves as the investment arm of Colina Holdings Ltd. and provides financial services to individual and institutional clients.
- Industry
- Wealth Management & Investment Advisory
- Address
- Nassau, The Bahamas
- Founded
- 1997
Attack summary
Severity: critical — Confirmed exfiltration of regulated financial data at scale (500 GB), including client PII, financial assets, and compliance records from a licensed financial services firm. Exposure of this sensitive data poses severe risk to clients and regulatory consequences for the firm.incransom claims to have exfiltrated approximately 500 GB of highly confidential data from CFAL, including client PII, financial profiles, asset data, proprietary business intelligence, estate planning documents, and regulatory/compliance records. The group alleges senior executives are covering up the breach.
Data the group says was taken
AI dossier — extracted from the leak post- Client Personally Identifiable Information (PII)
- Client Financial Profiles & Asset Data
- Proprietary Business Intelligence & System Data
- Estate & Legal Planning Documents
- Regulatory & Compliance Records
What the group claims
Colina Financial Advisors Limited (CFAL) is a prominent, independent wealth management and investment advisory firm based in Nassau, The Bahamas. Established in 1997, it serves as the investment arm of Colina Holdings Ltd.. The firm provides diverse financial services to both individual and institutional clients. While customers continue to entrust the company with their money, senior executives are actively working to cover up a major data breach involving approximately 500 GB of highly confidential data. The leak includes, but is not limited to: 1. Client Personally Identifiable Information (PII) 2. Client Financial Profiles & Asset Data 3. Proprietary Business Intel & System Data 4. Holistic Estate & Legal Planning 5. Regulatory & Compliance Records Stay tuned for further updates.
Sources
Source
Indexed 10 hours agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.