Ransomware victim disclosure
← All victimsAupaircare and Intraxinc
Claimed by Everest · listed 10 months ago
Status timeline
- ListedSep 9, 2025
- Data leakeddate unknown
At a glance
- Group
- Everest
- Status
- Data leaked
- Country
- United States
- Sector
- Consumer Services
- Listed on leak site
- Sep 9, 2025
About the victim
AI dossier — public-source company profileAuPairCare and Intrax Inc. are related entities operating in the cultural exchange and au pair placement industry in the United States. AuPairCare is a State Department-designated au pair program sponsor that places international au pairs with American host families. Intrax Inc. is the parent organization offering a broader portfolio of international exchange, travel, and workforce mobility programs.
- Industry
- Au Pair & Cultural Exchange / Workforce Mobility Services
Attack summary
Severity: critical — The company handles sensitive PII for international exchange participants including minors (au pairs and host families with children), visa and immigration-related personal data, and personal background information at scale — all categories of regulated/sensitive data. Data has been published, not merely threatened.The Everest ransomware group claims to have published data stolen from AuPairCare and Intrax Inc., listing the victim under a 'data_published' disclosure status, indicating exfiltration and public release of company data without a stated ransom amount.
Data the group says was taken
AI dossier — extracted from the leak post- Company databases
- Employee records
- Host family personal information
- Au pair applicant personal information
- Program participant PII
Original description
AI-summarised, not from the leak postAuPairCare and Intrax Inc. are sister companies. AuPairCare is a leading au pair agency providing live-in childcare services to American families in over 40 states. It pairs host families with international young adults who provide up to 45 hours of childcare each week. Intrax Inc. on the other hand, is a globally-oriented company providing a variety of educational and cultural exchange programs, including work and internship, teaching, and language learning opportunities.
The leak post
captured from the group's site© 2026, All rights reserved Citizens Bank - Database Leaked Evaluate a Norstella company - Database Leaked Studio Marchi - Studio Professionale Associato - Database Leaked Super AI - Database Leaked Complete Aircraft Group - Database Leaked Umiles Group - Database Leaked K Subsea Group - Database Leaked Parque Eólico Toabré - Database Leaked PT Brantas Abipraya - Database Leaked Straight Line Logistics - Database Leaked First Priority Group - Database Leaked Hyundai Elevator - Database Leaked UD Trucks - Database Leaked McDonalds India - Database Leaked Tsunami Tsolutions - Database Leaked Atlas Air: MUSE INSECURE - Database Leaked Iron Mountain - Database Leaked Hosowaka Micron Group - Database Leaked Shinwa Co Ltd - Database Leaked SIGMA Processing Group - Database Leaked Acu Trans Solutions LLC - Database Leaked GIBSIN Engineers - Database Leaked ASRock Rack - Database Leaked Reeves Information Technology - Database Leaked WANCHI STEEL INDUSTRIAL - Database Leaked GC Accounting - Database Leaked National Money Mart Company - Database leaked Virginia Records - Database Leaked Morgan Records Management - Database leaked ELC Electroconsult SpA - Databas…
Sources
Source
Indexed 10 months agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

