Ransomware victim disclosure
← All victimsInland Group
Claimed by Blackbyte · listed 3 years ago
Status timeline
- ListedFeb 12, 2023
- Data leakeddate unknown
At a glance
About the victim
AI dossier — public-source company profileThe Inland Group of Companies is a multi-national collective of aviation services providers operating at over 50 airports in four countries. Its subsidiaries offer aircraft deicing and anti-icing, aviation environmental management, and ground handling and terminal services. The group operates through brands including Inland Deicing Services, Inland Technologies Canada, and Quantem Aviation Services.
- Industry
- Aviation Services (Deicing, Environmental & Ground Handling)
Attack summary
Severity: high — Data has been confirmed as published by the ransomware group against a multi-national aviation services company operating at critical infrastructure (airports across four countries), indicating confirmed exfiltration of significant business data with potential operational and safety implications.BlackByte claims to have attacked Inland Group and has published data (disclosed status: data_published), indicating exfiltration of company data; no specific ransom amount or data volume was stated in the post.
Data the group says was taken
AI dossier — extracted from the leak post- Corporate business data
- Operational records
- Potentially HR and finance records
- Engineering and maintenance documentation
What the group claims
The Inland Group of Companies is a multi-national collective of premier aviation services providers. Each company is highly specialized in their field of expertise with proven track records of providing safe, efficient, and cost-effective aviation services.Integrated Deicing Services (IDS)Aircraft Deicing and Anti-icing Services.Inland Technologies International/Canada (Inland)Aviation Environmental Services.Quantem Aviation Services (QAS)Ground Handling and Terminal Services.
Sources
- Victim siteinlandgroup.aero/
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

