Ransomware victim disclosure
← All victimsPhoenix Touch Insurance
listed as phoenix.touch-ins.co.il · Claimed by Toufan · listed 3 years ago
Status timeline
- ListedDec 19, 2023
- Data leakeddate unknown
At a glance
About the victim
AI dossier — public-source company profilePhoenix Touch Insurance (phoenix.touch-ins.co.il) appears to be an Israeli insurance company or insurance intermediary operating under the 'Phoenix' brand, which is associated with one of Israel's largest financial and insurance groups. The company likely provides insurance products or brokerage services to Israeli customers. No further details are available from the captured site content.
- Industry
- Insurance
Attack summary
Severity: high — The disclosure status is 'data_published', indicating data has been exfiltrated and released. As an insurance entity, the company likely holds sensitive personal and financial PII on policyholders; however, without a captured leak post confirming the specific data types or scale, a 'critical' rating cannot be fully confirmed, so 'high' is assigned.The Toufan ransomware group claims to have attacked phoenix.touch-ins.co.il and has disclosed the status as data_published, indicating exfiltration and publication of data. No specific details about the nature or volume of the exfiltrated data were provided in the captured leak post.
Sources
- Victim sitephoenix.touch-ins.co.il/
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

