Ransomware victim disclosure
← All victimsTeeuwissen Rioolreiniging
listed as teeuwissen.com · Claimed by Devman · listed 9 months ago
Status timeline
- ListedOct 3, 2025
- Data leakeddate unknown
At a glance
- Group
- Devman
- Status
- Data leaked
- Country
- Netherlands
- Listed on leak site
- Oct 3, 2025
- Data size
- 80 GB
About the victim
AI dossier — public-source company profileTeeuwissen Rioolreiniging is a Dutch sewer cleaning and maintenance company headquartered in Huizen, Netherlands, with a second branch in Barneveld. The company offers services including drain unblocking, sewer installation and maintenance, pump pit management, and waste stream processing, serving private individuals, businesses, and government institutions. It operates 24/7 and processes recovered waste materials through its own wastewater treatment facilities.
- Industry
- Sewer Cleaning & Wastewater Services
- Address
- Bestevaer 50, 1271 ZA Huizen, Nederland
Attack summary
Severity: high — 80 GB of data has been published (disclosed status: data_published), indicating confirmed exfiltration at significant scale. The company serves government institutions and businesses, meaning the data could include contracts, operational records, and client PII. The volume and publication of data elevates this beyond medium severity.The group 'devman' claims to have exfiltrated approximately 80 GB of data from Teeuwissen Rioolreiniging and has published the data, having initially demanded a ransom of €370,000. No details on encryption of systems were stated in the post.
Data the group says was taken
AI dossier — extracted from the leak post- 80 GB of company data
What the group claims
Ransom: 370k 80gb
Sources
Source
Indexed 9 months agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

