Ransomware victim disclosure
← All victims4Motive
Claimed by Spacebears · listed 1 year ago
Status timeline
- ListedMay 22, 2025
- Data leakeddate unknown
At a glance
- Group
- Spacebears
- Status
- Data leaked
- Country
- Netherlands
- Listed on leak site
- May 22, 2025
About the victim
AI dossier — public-source company profile4Motive is a Dutch importer and distributor of automotive parts, founded in 2012 by Paul van Diemen. The company specializes in importing exclusive brands such as HEPU, XEVO, Klarius, and Quinton Hazell, offering wholesale solutions to automotive retailers with competitive pricing, stock advisory, and overnight delivery across the Netherlands.
- Industry
- Automotive Parts Import & Distribution
- Address
- Samoaweg 3, 1432 BZ Aalsmeer, Netherlands
- Founded
- 2012
Attack summary
Severity: medium — Confirmed data exfiltration with publication, including personal information and business documents. However, no specific data sensitivity details, scale, or operational impact is stated in the post.Spacebears claims to have exfiltrated documents, personal information, and other files from 4Motive. The group has published data but provided no ransom demand.
Data the group says was taken
AI dossier — extracted from the leak post- Documents
- Personal information
- Business files
What the group claims
4Motive was founded in 2012 by the current owner Paul van Diemen and has grown into a serious player in the field of importing and distributing car parts.We consciously choose to import brands that are not carried by other importers. This sets us apart from the competition and our customers can in turn distinguish themselves from other wholesalers.-Documents-Personal information-Other files https://4motive.nl/
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

