Ransomware victim disclosure
← All victimsWärtsilä
listed as WARTSILA.COM - HACKED AND MORE THEN 2000 GB DATA LEAKED · Claimed by Lv · listed 4 years ago
Status timeline
- ListedJul 25, 2022
- Data leakeddate unknown
At a glance
- Group
- Lv
- Status
- Data leaked
- Country
- Finland
- Sector
- Energy & Utilities
- Listed on leak site
- Jul 25, 2022
About the victim
AI dossier — public-source company profileWärtsilä is a Finnish global leader in innovative technologies and lifecycle solutions for the marine and energy markets, operating in approximately 180 countries. The company provides flexible engine power plants, energy storage systems, propulsion technologies, and intelligent optimisation solutions to energy providers and maritime operators worldwide. One in three large vessels globally uses Wärtsilä technologies, and the company employs around 17,000 people.
- Industry
- Marine & Energy Technology (Power Systems, Propulsion & Lifecycle Solutions)
- Address
- John Stenbergin ranta 2, FI-00170 Helsinki, Finland
- Employees
- 17000
- Founded
- 1834
Attack summary
Severity: critical — Over 2,000 GB of data reportedly exfiltrated and published from a major global industrial technology company operating in critical marine and energy infrastructure across 180 countries; scale of exfiltration and sensitivity of operational, customer, and potentially regulated data warrants critical classification.The Lv ransomware group claims to have hacked Wärtsilä and exfiltrated more than 2,000 GB of data, with the disclosure status recorded as data_published, indicating the stolen data has been released or made available.
Data the group says was taken
AI dossier — extracted from the leak post- Corporate business data
- Engineering and technical files
- Employee records
- Customer and partner information
- Financial documents
- Operational and project data
Sources
- Victim sitewartsila.com
Source
Indexed 4 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

