Ransomware victim disclosure
← All victimsUltra Intelligence & Communications
Claimed by Alphv · listed 3 years ago
Status timeline
- ListedDec 27, 2023
- Data leakeddate unknown
At a glance
- Group
- Alphv
- Status
- Data leaked
- Country
- United Kingdom
- Sector
- Technology
- Listed on leak site
- Dec 27, 2023
About the victim
AI dossier — public-source company profileUltra Intelligence & Communications is a UK-based defense technology company specializing in mission-critical command and control platforms, tactical communications systems, and cryptographic solutions for military and allied forces. The company provides AI-enabled software, hardware, and integrated systems for secure data movement and real-time operational awareness across multiple domains (ground, sea, air).
- Industry
- Defense & Aerospace Technology; Command & Control Systems; Tactical Communications
Attack summary
Severity: critical — Ultra I&C develops defense and military communications systems, encryption, command-and-control platforms, and works directly with government forces (U.S. Marine Corps, Canadian Armed Forces). Compromise of their systems, code, or design data poses direct national security and operational risk to allied military capabilities. The sensitivity of the victim organization's core business outweighs the lack of explicit proof-file counts in the post.ALPHV ransomware group claims to have compromised Ultra I&C and published data from the breach. The group post does not explicitly state what data was exfiltrated or the nature of the attack (encryption vs. exfiltration).
What the group claims
Ultra Intelligence & Communications provides critical, tactical capabilities that inform decision making in the most challenging environments. Our team of experts possess decades of expertise in mission-critical, multi-domain communications, command and control, and cyber security. Real-time C2 and integrated intelligence and leading-edge networked radio solutions are helping to reimagine the future of the connected digital battlespace.
Sources
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

