Ransomware victim disclosure
← All victimsTranscore
Claimed by Chaos · listed 1 year ago
Status timeline
- ListedMar 31, 2025
- Data leakeddate unknown
At a glance
- Group
- Chaos
- Status
- Data leaked
- Country
- United States
- Sector
- Transportation/Logistics
- Listed on leak site
- Mar 31, 2025
About the victim
AI dossier — public-source company profileTransCore, founded in 1939 and headquartered in Nashville, Tennessee, is a global leader in intelligent transportation systems and tolling solutions. The company specializes in congestion pricing, electronic tolling, RFID technology, traffic management systems, and back-office operations for government agencies and private firms worldwide.
- Industry
- Intelligent Transportation Systems & Tolling Solutions
- Address
- 150 4th Avenue North, Suite 1200, Nashville, TN 37219, United States
- Founded
- 1939
Attack summary
Severity: high — TransCore operates critical infrastructure (tolling systems, express lane management, traffic control) affecting major U.S. transportation networks. Confirmed data exfiltration from such a provider poses significant operational and security risks to dependent government agencies and the public.The Chaos group claims to have breached TransCore and published exfiltrated data. The specific operational details of the attack (encryption, data categories) are not detailed in the available excerpt.
Data the group says was taken
AI dossier — extracted from the leak post- Company systems/databases
- Operational data
What the group claims
Founded in 1939 and headquartered in Nashville, Tennessee, TransCore is a company that provides digital solutions and services to transportation departments and agencies around the world. The company provides solutions that aid in the development of express lanes, creating traffic systems, and managing vehicle-to-vehicle programs.
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

