Ransomware victim disclosure
← All victimsHTC Global Services
Claimed by Alphv · listed 3 years ago
Status timeline
- ListedNov 30, 2023
- Data leakeddate unknown
At a glance
- Group
- Alphv
- Status
- Data leaked
- Sector
- Business Services
- Listed on leak site
- Nov 30, 2023
About the victim
AI dossier — public-source company profileHTC Global Services is an IT and business process services provider established in 1990 and headquartered in Troy, Michigan. The company specializes in grant management software (EGrAMS), digital transformation, cloud services, AI, and enterprise software solutions for BFSI, healthcare, public sector, and higher education clients globally.
- Industry
- Information Technology & Business Process Services
- Address
- Troy, Michigan, USA
- Founded
- 1990
Attack summary
Severity: high — Confirmed data exfiltration from a major IT services provider serving regulated sectors (BFSI, healthcare, government). Potential exposure of client data and intellectual property across multiple critical industries. Company serves state agencies and financial institutions, elevating sensitivity.ALPHV claims to have exfiltrated data from HTC Global Services. The group has published the data, though specific details of what was compromised are not detailed in the leak post excerpt provided.
Data the group says was taken
AI dossier — extracted from the leak post- Business data
- Client information
- Potentially sensitive enterprise records
What the group claims
HTC Global Services, established in 1990 and headquartered in Troy, Michigan is a provider of information technology and business process services. The company offers grant management software that automates the grant management process. HTC has installed Enterprise Grants Management System (EGrAMS)for various states and state agencies in USA. HTC is a Tier 2 investment partner of Kuali Foundation to develop and deliver next-generation library management system for various universities.
Sources
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

