Ransomware victim disclosure
← All victimsSBC Global, Bitfinex, Coinmama, and Rutgers University Part 2 Leak
Claimed by Flocker · listed 2 years ago
Status timeline
- ListedMay 7, 2024
- Data leakeddate unknown
At a glance
- Group
- Flocker
- Status
- Data leaked
- Country
- United States
- Listed on leak site
- May 7, 2024
About the victim
AI dossier — public-source company profileThis record represents a multi-victim breach claim by the Flocker ransomware group. The four named victims span cryptocurrency exchanges (Bitfinex, Coinmama), a telecommunications provider (SBC Global), and an academic institution (Rutgers University). No consolidated public site or detailed victim information is available.
Attack summary
Severity: high — Multi-victim breach affecting cryptocurrency exchanges (high-value targets with potential financial data), telecom provider, and major university. Confirmed data publication ('Part 2 Leak') and ransom refusal suggest exfiltration; however, without detailed inventory or proof count, full critical classification is not warranted.Flocker claims to have attacked four separate organizations (SBC Global, Bitfinex, Coinmama, Rutgers University) and published data after ransom demands were refused. The specific data exfiltrated and operational impact per victim is not detailed in the post excerpt.
Data the group says was taken
AI dossier — extracted from the leak post- Financial/cryptocurrency exchange data (Bitfinex, Coinmama)
- Telecommunications customer/operational data (SBC Global)
- University records (Rutgers University)
What the group claims
The four victims of our attack – SBC Global, Bitfinex, Coinmama, and Rutgers University. You refused to pay, and now […]
Sources
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

