Ransomware victim disclosure
← All victimsbERS Logistics
listed as bERS · Claimed by Deadlock · listed 5 days ago
Status timeline
- ListedJul 10, 2026
- Data leakeddate unknown
At a glance
About the victim
AI dossier — public-source company profilebERS Logistics is a Bulgarian logistics company offering integrated 3PL services including warehousing, fulfillment, domestic and international transport, temperature-controlled logistics, and value-added services. Operating for approximately 10 years, they serve e-commerce and B2B clients across Bulgaria and Europe, certified to ISO 9001:2015 and IFS Logistics standards.
- Industry
- Third-Party Logistics (3PL) & Warehousing
- Founded
- 2013
Attack summary
Severity: medium — Data has been published by the threat actor (disclosed status confirmed), but the leak post excerpt provides minimal detail on the nature, volume, or sensitivity of exfiltrated data. No evidence of regulated/sensitive data (PII at scale, financial records, healthcare data) is explicitly mentioned in the available text. The company handles logistics data which may include customer shipping information and business operations data.The Deadlock group claims to have compromised bERS Logistics and published data from the breach. No specific operational disruption or ransom demand is stated in the available post excerpt.
Data the group says was taken
AI dossier — extracted from the leak post- Customer logistics records
- Warehouse/inventory data
- Transport documentation
- Business communications
- Operational systems data
What the group claims
Bers logistics has been providing logistics services and high quality 3pl outsourcing of integrated logistics services.
Sources
- Victim sitebers.bg
Source
Indexed 5 days agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

