Ransomware victim disclosure
← All victimsServicePower
listed as www.servicepower.com · Claimed by Apt73 · listed 2 years ago
Status timeline
- ListedMay 2, 2024
- Data leakeddate unknown
At a glance
- Group
- Apt73
- Status
- Data leaked
- Country
- United Kingdom
- Sector
- Technology
- Listed on leak site
- May 2, 2024
- Data size
- 328 MB
About the victim
AI dossier — public-source company profileServicePower is an AI-powered field service management (FSM) software platform serving enterprise organizations globally. The company provides workforce management solutions for employed, contracted, and blended workforce models across industries including building technologies, appliances, home warranty, insurance, utilities, and telecommunications. They have operated for over 30 years.
- Industry
- Software Development & Field Service Management
Attack summary
Severity: high — Confirmed exfiltration of internal system documentation and credentials from a major software vendor serving hundreds of enterprise customers globally. Exposure of internal credentials and system architecture poses significant risk to the company and potentially its downstream customers' security.APT73 claims to have exfiltrated 328 MB of internal system documents and credentials from ServicePower's internal resources. The group published the data without ransom demand.
Data the group says was taken
AI dossier — extracted from the leak post- internal system documents
- credentials
- internal resource access details
What the group claims
Large software development company Service Power. Great Britain. Documents of internal systems, credits to internal resources. 328 MB
Sources
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

