Ransomware victim disclosure
← All victimsIronmark
Claimed by Akira · listed 2 days ago
Status timeline
- ListedJul 13, 2026
- Data leakeddate unknown
At a glance
- Group
- Akira
- Status
- Data leaked
- Country
- United States
- Sector
- Business Services
- Listed on leak site
- Jul 13, 2026
About the victim
AI dossier — public-source company profileIronmark is a marketing, creative, printing and communications services provider headquartered in Annapolis Junction, Maryland. They offer integrated marketing solutions including digital advertising, creative development, commercial printing, direct mail, and data-driven strategy services across multiple verticals including automotive, financial services, healthcare, and franchise operations.
- Industry
- Marketing Services & Print Communications
- Address
- Annapolis Junction, Maryland, US
Attack summary
Severity: critical — Confirmed exfiltration of 190 GB including regulated PII (passports, driver's licenses) at scale, detailed financials, client data, and contractual information. Multi-category sensitive data exposure poses significant regulatory and legal risk.The Akira group claims to have exfiltrated 190 GB of corporate data, including employee personal information (passports, driver's licenses), project details, financial records, client information, contracts, NDAs, and related business documents.
Data the group says was taken
AI dossier — extracted from the leak post- employee passports and driver's licenses
- employee personal information
- detailed financials
- project information
- client internal information
- contracts and agreements
- NDAs
What the group claims
Founded and headquartered in Annapolis Junction, Maryland, Ironmark is a provider of marketing, creative, printing and communications services. They specialize in marketing strategy, creativ e & web development, digital marketing, printing services, and more. We will upload 190gb of corporate data soon. Employee personal information (passports, DLs and other personal information), projects information, detailed financials, client internal informa tion, contracts and agreements, NDAs and so on.
Sources
- Victim siteironmarkusa.com
Source
Indexed 2 days agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

