Ransomware victim disclosure
← All victimsIntegrated Technology Group (ITG)
listed as itgsolutions.com · Claimed by LockBit · listed 7 months ago
Status timeline
- ListedDec 26, 2025
- Data leakeddate unknown
At a glance
- Group
- LockBit
- Status
- Data leaked
- Country
- Jordan
- Sector
- Technology
- Listed on leak site
- Dec 26, 2025
About the victim
AI dossier — public-source company profileIntegrated Technology Group (ITG) is a Jordan-based technology company specializing in IT solutions for education, government, and enterprise sectors. Its flagship products include EduWave (a comprehensive e-learning platform for K-12 and higher education), WaveERP, WaveGRP, and WaveDMS. The company serves clients across the EMIS and broader MENA region.
- Industry
- Education & Government Technology Solutions
Attack summary
Severity: high — Data has been confirmed published by LockBit. ITG serves government and education clients across the region, meaning exfiltrated data likely includes sensitive government, institutional, and student/user records, representing significant business and potentially regulated data exposure.LockBit claims to have attacked ITG and has published data, indicating confirmed exfiltration of company data. The disclosed status is 'data_published', meaning stolen data has been released, though specific data categories and volume are not detailed in the post.
Data the group says was taken
AI dossier — extracted from the leak post- Company internal documents
- Client records
- Employee data
- Business operations data
What the group claims
Integrated Technology Group (ITG) specializes in providing technology solutions tailored for the edu...
Sources
- Victim siteitgsolutions.com
Source
Indexed 7 months agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

