Ransomware victim disclosure
← All victimsEmpresas Maggi
Claimed by Worldleaks · listed 7 months ago
Status timeline
- ListedDec 9, 2025
- Data leakeddate unknown
At a glance
- Group
- Worldleaks
- Status
- Data leaked
- Country
- Brazil
- Listed on leak site
- Dec 9, 2025
About the victim
AI dossier — public-source company profileEmpresas Maggi is a Bolivian company involved in the cultivation, production, marketing, and distribution of organic and natural food products. Its product range includes grains, oils, honey, and other organic food items. The company positions itself as a vertically integrated agri-food business focused on top-quality natural products.
- Industry
- Organic & Natural Food Production
- Founded
- 1985
Attack summary
Severity: medium — Data has been published (confirmed exfiltration) but no specific data types, volume, or sensitive regulated categories (e.g. PII at scale, financial, medical) are described in the leak post, limiting severity to medium.The worldleaks group has published data allegedly exfiltrated from Empresas Maggi, with the disclosure status marked as data_published, indicating stolen data has been released rather than merely threatened.
Original description
AI-summarised, not from the leak postEmpresas Maggi is a leading Bolivian company intimately involved in the cultivation and production of organic and natural foods. Founded in 1985, the company specializes in a broad range of products such as grains, oils, honey, and other organic food items. Empresas Maggi's operation extends from cultivation and production to marketing and distribution, focusing on providing its customers with top-quality natural and organic food products.
Sources
Source
Indexed 7 months agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

