Ransomware victim disclosure
← All victimsICM Document Solutions
listed as icmconv.com · Claimed by Kawa4096 · listed 1 year ago
Status timeline
- ListedJul 22, 2025
- Data leakeddate unknown
At a glance
- Group
- Kawa4096
- Status
- Data leaked
- Country
- United States
- Listed on leak site
- Jul 22, 2025
About the victim
AI dossier — public-source company profileICM Document Solutions is a document management and digital transformation service provider founded in 1988, headquartered in Phoenix, Arizona. They offer scanning, data capture, document management, and IT services primarily to aerospace & defense, education, government, and manufacturing sectors.
- Industry
- Document Management & Business Process Services
- Address
- 4100 E. Broadway Road, Suite #180, Phoenix, Arizona 85040
- Founded
- 1988
Attack summary
Severity: low — The leak post is minimal and contains no proof files, screenshots, specific data claims, or technical details about what was compromised. Without evidence of data exfiltration or encryption impact, this appears to be a listing/announcement only.The kawa4096 group claims to have attacked icmconv.com. The leak post provides no substantive details about the nature of the attack, data exfiltrated, or operational impact.
What the group claims
icmconv.com
Sources
- Victim siteicmconv.com
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

