Ransomware victim disclosure
← All victimsTranssion Holdings
Claimed by Hellcat · listed 1 year ago
Status timeline
- ListedMar 29, 2025
- Data leakeddate unknown
At a glance
- Group
- Hellcat
- Status
- Data leaked
- Country
- China
- Sector
- Technology
- Listed on leak site
- Mar 29, 2025
- Data size
- 70 GB
- Ransom demanded
- $8.6B
About the victim
AI dossier — public-source company profileTranssion Holdings is a leading mobile device provider with approximately $8.6 billion in annual revenue. The company designs and manufactures smartphones and related consumer electronics, primarily serving emerging markets in Africa and Asia.
- Industry
- Mobile Device Manufacturing & Software
Attack summary
Severity: critical — Confirmed exfiltration of 70 GB including proprietary source code, internal communications, and project planning from a major technology manufacturer with $8.6B revenue. Disclosure of source code and business planning data poses significant competitive and operational risk.Hellcat claims to have exfiltrated approximately 70 GB of sensitive data including emails, internal communications, source code, project planning documents, and data from Transsion and its business partners. The group has published the data.
Data the group says was taken
AI dossier — extracted from the leak post- Internal emails and communications
- Source code
- Project planning documents
- Partner data
What the group claims
We hold almost 70GB of sensitive data from Transsion, a leading mobile device provider with $8.6B in revenue. This includes emails, internal communications, source codes, project planning, and data from Transsion and its partners.
Sources
- Victim sitetranssion.com
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

