Ransomware victim disclosure
← All victimsDGM Industrie
Claimed by Royal · listed 3 years ago
Status timeline
- ListedMar 17, 2023
- Data leakeddate unknown
At a glance
- Group
- Royal
- Status
- Data leaked
- Country
- France
- Sector
- Manufacturing
- Listed on leak site
- Mar 17, 2023
- Ransom demanded
- $1M
About the victim
AI dossier — public-source company profileDGM Industrie is a French industrial services company founded in 2001, headquartered in Jossigny (Seine-et-Marne, France). The company specialises in non-destructive testing (CND/NDT), industrial machining, boilermaking, welding, metrology, and rope-access work on difficult-access sites. It also holds a notable specialisation in roller-coaster maintenance for major theme parks.
- Industry
- Industrial Engineering & Non-Destructive Testing Services
- Address
- 5 Chemin des chaudronniers, 77600 Jossigny, France
- Employees
- 21-50
- Founded
- 2001
Attack summary
Severity: high — Data has been published by the ransomware group, confirming exfiltration and public disclosure of business data. While the company is small (21-50 employees, $1M-$5M revenue), the confirmed data publication rather than a mere listing elevates severity to high. No evidence of regulated PII at scale or critical infrastructure impact that would warrant critical.The Royal ransomware group claims to have attacked DGM Industrie and has published data (disclosed status: data_published), demanding a ransom of $1 million. The post implies exfiltration and/or encryption of company data, though no specific data volume is stated.
Data the group says was taken
AI dossier — extracted from the leak post- Business financial records
- Employee information
- Client/contract data
- Engineering and design documents
- Operational data
What the group claims
DGM Industrie is a company that operates in the Mechanical or Industrial Engineering industry. It employs 21-50 people and has $1M-$5M of revenue.
Sources
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

