Ransomware victim disclosure
← All victimsCaltrol
listed as caltrol.com\$296.3M\USA\224gb\<1% DISCLOSED · Claimed by Cactus · listed 1 year ago
Status timeline
- ListedFeb 26, 2025
- Data leakeddate unknown
At a glance
- Group
- Cactus
- Status
- Data leaked
- Country
- United States of America
- Sector
- Technology
- Listed on leak site
- Feb 26, 2025
About the victim
AI dossier — public-source company profileCaltrol is an industrial automation and process control solutions provider specializing in DeltaV systems, control valves, and instrumentation for refining, petrochemical, life sciences, and chemical manufacturing sectors. The company serves critical infrastructure operators with predictive maintenance, vibration analysis, and 24/7 support.
- Industry
- Industrial Process Control & Automation
Attack summary
Severity: high — Confirmed data exfiltration from a critical infrastructure software provider serving refining and chemical plants. Exposure of process control documentation and customer operational data poses significant risk to industrial operations, though no specific regulated data categories are confirmed in available excerpts.Cactus ransomware group claims to have accessed Caltrol's systems and exfiltrated data. The group has published some portion of the claimed data as proof of compromise.
Data the group says was taken
AI dossier — extracted from the leak post- Process control systems documentation
- Customer operational data
- Technical specifications
- Business records
Sources
- Victim sitecaltrol.com
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

