Ransomware victim disclosure
← All victimsSouth African Cities Network
listed as sacities.net · Claimed by Madliberator · listed 2 years ago
Status timeline
- ListedJul 17, 2024
- Data leakeddate unknown
At a glance
- Group
- Madliberator
- Status
- Data leaked
- Country
- South Africa
- Sector
- Government
- Listed on leak site
- Jul 17, 2024
About the victim
AI dossier — public-source company profileThe South African Cities Network is a government organization focused on promoting good governance and management of South African cities. It analyzes strategic challenges facing cities in the context of global economic integration and national development, and facilitates shared-learning partnerships between different spheres of government.
- Industry
- Government & Public Administration
Attack summary
Severity: medium — Government data has been published by the threat actor; however, no specific regulated or sensitive data categories are confirmed, and no proof files or detailed inventory is evident in the truncated post.The Madliberator group claims to have accessed and published data from the South African Cities Network. The specific data exfiltrated and operational impact are not detailed in the available post excerpt.
Data the group says was taken
AI dossier — extracted from the leak post- Government strategic documents
- City governance records
- Organizational communications
What the group claims
Our vision and mission is crucial to the work we do. Integral to the South African Cities Network is the promotion of good governance and management of South African cities.We analyse strategic challenges facing South African cities, particularly in the context of global economic integration and national development; collect, collate, analyse, disseminate and apply the experience of large city government in a South African context; and promote a shared-learning partnership between different spheres of government to...
Sources
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

