Ransomware victim disclosure
← All victimswww.jhayber.com
Claimed by RansomHub · listed 1 year ago
Status timeline
- ListedMar 17, 2025
- Data leakeddate unknown
At a glance
- Group
- RansomHub
- Status
- Data leaked
- Country
- Spain
- Sector
- Consumer Services
- Listed on leak site
- Mar 17, 2025
About the victim
AI dossier — public-source company profileJhayber is a Spanish sportswear company established in 1972, specializing in athletic shoes, clothing, and accessories for men, women, and children. The company operates an e-commerce platform serving multiple European countries and beyond, offering a range of products from casual wear to specialized footwear for running, padel, and outdoor activities.
- Industry
- Sportswear & Athletic Footwear
- Address
- Spain (based on site language and contact +34 country code; specific address not stated)
- Founded
- 1972
Attack summary
Severity: medium — Data has been published by the ransomware group, indicating confirmed exfiltration, but no specific sensitive data categories (PII at scale, financial, medical) are enumerated in the post, and no proof files or screenshots are quantified.RansomHub claims to have compromised Jhayber and published exfiltrated data. The group has disclosed the attack status as 'data_published' but no specific ransom demand or data volume is stated in the available post.
Data the group says was taken
AI dossier — extracted from the leak post- customer records
- business data
Original description
AI-summarised, not from the leak postJhayber is a popular Spanish company specializing in sportswear. Renowned for over 40 years, it offers a diverse product range, encompassing shoes, clothing and sports accessories. Their products cater to both men and women. Driven by the idea of combining comfort, style, and durability, Jhayber is loved by athletes and fitness enthusiasts. Known for prioritizing quality, the company promises reliable sportswear for various physical activities.
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

