Ransomware victim disclosure
← All victimsECCO Bulgaria
listed as ecco.bg · Claimed by Ransomedvc · listed 3 years ago
Status timeline
- ListedSep 26, 2023
- Data leakeddate unknown
At a glance
- Group
- Ransomedvc
- Status
- Data leaked
- Country
- Bulgaria
- Sector
- Retail & Consumer
- Listed on leak site
- Sep 26, 2023
- Ransom demanded
- $15.000
About the victim
AI dossier — public-source company profileecco.bg appears to be the Bulgarian online retail presence associated with ECCO, a Danish footwear and accessories brand. The site serves customers in Bulgaria, offering shoes and related products. The exact operational scale of the Bulgarian entity is not confirmed from available data.
- Industry
- Retail & Consumer Footwear
Attack summary
Severity: medium — Data exfiltration is claimed and the status is 'data_published', but no specific data types, scale, or proof files are described in the post, and the ransom demand is relatively low, limiting confirmed impact assessment.Ransomedvc claims to have exfiltrated data from ecco.bg and threatens to publish all obtained information if a ransom of $15,000 is not paid; no encryption claim is explicitly stated.
Data the group says was taken
AI dossier — extracted from the leak post- Unspecified company data
- Potentially customer records
- Potentially internal business information
What the group claims
We will leak all of the info we have on you if we dont get paid.We require a ransom of $15,000
Sources
- Victim siteecco.bg
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

