Ransomware victim disclosure
← All victimsConsorzio Innova
listed as www.consorzioinnova.it · Claimed by Alphalocker · listed 2 years ago
Status timeline
- ListedAug 6, 2024
- Data leakeddate unknown
At a glance
- Group
- Alphalocker
- Status
- Data leaked
- Country
- Italy
- Sector
- Technology
- Listed on leak site
- Aug 6, 2024
- Data size
- 225 GB
About the victim
AI dossier — public-source company profileConsorzio Innova is an Italian consortium of companies specializing in construction, plant engineering, and services for public entities, industry, and the tertiary sector. With 1,050 member companies, 12 operational offices, and a 2025 production value of €430 million, it operates across building, infrastructure works, renewable energy, maritime/fluvial projects, and facility management.
- Industry
- Construction, Infrastructure & Engineering Services
- Address
- Via G. Papini, 18 - 40128 Bologna, Italy (Registered); Via Della Cooperazione, 9 - 40129 Bologna, Italy (Operational)
Attack summary
Severity: high — Confirmed exfiltration of 225 GB including employee and client data from a large consortium operating critical infrastructure projects. Scale and sensitivity of PII and business data warrants high severity despite no ransom stated.Alphalocker claims to have exfiltrated 225 GB of data including employee records, client information, and databases from Consorzio Innova. The group has published the data on their leak site.
Data the group says was taken
AI dossier — extracted from the leak post- employee records
- client information
- databases
What the group claims
225GB DATAemployeesclientsdatabase and etc
Sources
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

