Ransomware victim disclosure
← All victimsGEACAM
Claimed by NoEscape · listed 3 years ago
Status timeline
- ListedOct 9, 2023
- Data leakeddate unknown
At a glance
- Group
- NoEscape
- Status
- Data leaked
- Country
- Spain
- Sector
- Government
- Listed on leak site
- Oct 9, 2023
About the victim
AI dossier — public-source company profileGEACAM (Empresa Pública de Gestión Ambiental de Castilla-La Mancha SA) is a Spanish public company integrated into the Ministry of Sustainable Development of the Castilla-La Mancha regional government. It is responsible for environmental management activities across the Castilla-La Mancha autonomous community in Spain.
- Industry
- Public Sector Environmental Management
- Address
- Castilla-La Mancha, Spain
Attack summary
Severity: high — The victim is a public-sector government entity, data has been confirmed as published by the threat actor, and the organization manages environmental resources on behalf of a regional government, making any data exfiltration significant both operationally and in terms of potential sensitive government data exposure.The NoEscape ransomware group claims to have attacked GEACAM and has published data (disclosed_status: data_published), indicating exfiltration of data from this regional government environmental agency.
Data the group says was taken
AI dossier — extracted from the leak post- Government environmental management records
- Internal company documents
What the group claims
The public company Environmental Management of Castilla-La Mancha (GEACAM), integrated into the Ministry of Sustainable Development, faces a new stage in which it must rega...
Sources
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

