Ransomware victim disclosure
← All victimsCompañía Minera San Gerónimo (CMSG)
listed as www.cmsg.cl · Claimed by RansomHub · listed 1 year ago
Status timeline
- ListedFeb 26, 2025
- Data leakeddate unknown
At a glance
About the victim
AI dossier — public-source company profileCompañía Minera San Gerónimo is a mid-sized mining company based in Chile's Coquimbo Region. They operate two mining divisions (Talcuna and Lambert) producing copper concentrate, silver, gold, and iron concentrates, as well as high-purity copper salts for export. The company exports approximately 85% of production to national and international markets.
- Industry
- Mining & Mineral Processing
- Address
- Coquimbo Region, Chile (Talcuna Division: 48km from La Serena; Lambert Division: 22km northwest of La Serena)
- Employees
- 200-500
Attack summary
Severity: medium — Mining company with significant operational and commercial data; no specific evidence of regulated/sensitive data exfiltration or operational disruption is documented in the leak post, but the company handles production/export data and employee information at scale.RansomHub claims to have compromised Compañía Minera San Gerónimo. The group's leak post indicates data exfiltration, though specific details of what was accessed or encrypted are not provided in the available disclosure.
Data the group says was taken
AI dossier — extracted from the leak post- operational data
- business records
- employee information
Original description
AI-summarised, not from the leak postCMSG is a consulting company based in Chile that provides a wide range of services including business consulting, digital marketing, and web design. They aim to improve their clients' businesses by providing effective solutions tailored to meet their specific needs. Using their expertise in technology and marketing, they strive to deliver exceptional results and value for their clients.
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

