Ransomware victim disclosure
← All victimsSamkee Automotive
listed as samkee.com · Claimed by LockBit · listed 7 months ago
Status timeline
- ListedDec 29, 2025
- Data leakeddate unknown
At a glance
- Group
- LockBit
- Status
- Data leaked
- Country
- South Korea
- Listed on leak site
- Dec 29, 2025
About the victim
AI dossier — public-source company profileSamkee Automotive, founded in 1978 and based in South Korea, specializes in injection molding for vehicles and supplies global automotive equipment and components. The company operates as a manufacturer of plastic and molded parts for the automotive sector. It serves international markets as a supplier within the global automotive supply chain.
- Industry
- Automotive Injection Molding & Components Manufacturing
- Founded
- 1978
Attack summary
Severity: high — Data has been confirmed as published by LockBit, indicating successful exfiltration from a manufacturing company in the automotive supply chain; while specific regulated PII at scale is not confirmed, the published status and industrial sensitivity of supply chain data elevates this to high.LockBit claims to have compromised Samkee Automotive and has published data (disclosed status: data_published), indicating exfiltration of company data, though specific data categories and volume were not detailed in the truncated leak post.
Data the group says was taken
AI dossier — extracted from the leak post- Company internal documents
- Automotive manufacturing data
What the group claims
Founded in 1978, Samkee Automotive specializes in injection molding vehicles, providing global equi...
Sources
- Victim sitesamkee.com
Source
Indexed 7 months agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

