Ransomware victim disclosure
← All victimsIgadI
listed as igadiltd.com · Claimed by Abyss · listed 3 years ago
Status timeline
- ListedMar 21, 2023
- Data leakeddate unknown
At a glance
- Group
- Abyss
- Status
- Data leaked
- Country
- Italy
- Sector
- Business Services
- Listed on leak site
- Mar 21, 2023
- Data size
- 84 GB
About the victim
AI dossier — public-source company profileIgadI is a Colorado-based cannabis retailer operating multiple recreational and medical dispensaries across the state, with locations in Golden, Idaho Springs, Granby, Lyons, Louisville, Lafayette, Northglenn, and Nederland. The company focuses on providing a dispensary experience grounded in transparency, quality, and education. It offers a range of cannabis products including flower, edibles, vaporizers, pre-rolls, concentrates, and accessories.
- Industry
- Cannabis Retail (Recreational & Medical Dispensaries)
- Address
- Multiple locations across Colorado, USA (e.g., 1325 S Public Rd Lafayette, CO 80026; 791 Pine Ridge Rd Golden, CO 80403; 11919 Washington St Northglenn, CO 80233)
Attack summary
Severity: high — 84 GB of data has been confirmed exfiltrated and published. IgadI operates a membership/loyalty program and processes customer transactions, suggesting the stolen data likely includes PII such as customer names, contact details, and purchase history. Cannabis dispensaries are also subject to state-regulated record-keeping requirements, increasing the sensitivity of the exposed data.The Abyss ransomware group claims to have exfiltrated 84 GB of uncompressed data from IgadI and has published the data. No ransom amount was stated.
Data the group says was taken
AI dossier — extracted from the leak post- Business operational data
- Potentially customer records (membership/loyalty program data)
- Potentially employee records
- Financial/transaction data
What the group claims
IgadI 84Gb uncompressed data
Sources
- Victim siteigadiltd.com
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

