Ransomware victim disclosure
← All victimsAsseco
Claimed by Hellcat · listed 1 year ago
Status timeline
- ListedApr 5, 2025
- Data leakeddate unknown
At a glance
- Group
- Hellcat
- Status
- Data leaked
- Country
- Poland
- Sector
- Technology
- Listed on leak site
- Apr 5, 2025
About the victim
AI dossier — public-source company profileAsseco Group is a major European software vendor operating in over 50 countries, specializing in enterprise IT solutions for banking, insurance, public administration, healthcare, utilities, and defense sectors. Listed on multiple stock exchanges (Warsaw, Tel-Aviv, NASDAQ), the company generates approximately 80% of revenue from proprietary software and ranks 6th among European software vendors.
- Industry
- Enterprise Software & IT Solutions
- Address
- Ul. Piastów 24, 87-100 Torum, Poland (headquarters inferred from phone number +48 17)
- Employees
- 5000-10000
- Founded
- 1981
Attack summary
Severity: critical — Large multinational software vendor with operations across critical sectors (banking, defense, government, healthcare) confirmed to have exfiltrated source code, financial records, and internal communications. The scale of potential downstream impact on clients in regulated industries and the nature of intellectual property theft warrants critical classification.Hellcat claims to have breached Asseco's internal systems and exfiltrated sensitive files including communications, financial records, and source material. The group posted the announcement to their leak site indicating data publication.
Data the group says was taken
AI dossier — extracted from the leak post- internal communications
- financial records
- source code/source material
- sensitive files
What the group claims
Jiraware <<3 !! We have breached Asseco’s internal systems, stealing sensitive files, communications, financial records, and source material
Sources
- Victim siteasseco.com
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

