Ransomware victim disclosure
← All victimsSNEDAI Groupe
listed as snedai.com · Claimed by Dragonransomware · listed 2 years ago
Status timeline
- ListedDec 15, 2024
- Data leakeddate unknown
At a glance
- Group
- Dragonransomware
- Status
- Data leaked
- Country
- Côte d’Ivoire
- Sector
- Transportation/Logistics
- Listed on leak site
- Dec 15, 2024
About the victim
AI dossier — public-source company profileSNEDAI Groupe is a Côte d'Ivoire-based conglomerate providing government digital identity services, including biometric passports and visas, alongside transport & distribution, energy, and real estate divisions. The group operates multiple subsidiaries (STL, S.Energies, SNEDAI Technologies) and serves official state functions.
- Industry
- Government Services & Digital Identity (Biometric Passports, Visas, Transport & Logistics)
Attack summary
Severity: high — SNEDAI operates critical government digital identity infrastructure (biometric passports, visas) for Côte d'Ivoire, making even unconfirmed compromise of this entity a significant threat to national systems and citizen data. However, no proof of exfiltration or operational disruption is published, and the leak post is minimal.DragonRansomware claims to have accessed SNEDAI Groupe's infrastructure. The leak post contains only a URL check link with no explicit statement of data exfiltration, encryption, or proof of compromise.
Data the group says was taken
AI dossier — extracted from the leak post- Biometric passport records
- Visa application data
- Government identity databases
- Transport & logistics operational data
- Corporate financial records
What the group claims
[+] https://snedai.com/ --> [Check Host](https://check-host.cc/?m=HTTP&target=https://snedai.com)
Sources
- Victim sitesnedai.com
- Leak posthttps://t.me/DragonRansom/345
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

