Ransomware victim disclosure
← All victimshighwirepress.com
Claimed by Babuk · listed 1 year ago
Status timeline
- ListedMar 18, 2025
- Data leakeddate unknown
At a glance
- Group
- Babuk
- Status
- Data leaked
- Country
- United States
- Sector
- Technology
- Listed on leak site
- Mar 18, 2025
About the victim
AI dossier — public-source company profileHighWire Press is a digital publishing platform provider founded in 1995 and spun out of Stanford University. They provide end-to-end solutions for scholarly publishers including manuscript submission, peer review, content hosting, publication, and analytics. The platform serves major academic journals, university presses, and scientific publishers globally, with 60 million monthly users and 200 million key activities per month.
- Industry
- Scholarly Publishing & Digital Publishing Services
- Founded
- 1995
Attack summary
Severity: high — HighWire Press hosts critical scholarly publishing infrastructure serving major academic institutions and journals globally. A successful breach could impact millions of researchers and disrupt access to peer-reviewed scientific content. The company processes sensitive manuscript data, subscriber information, and controls access to published research across multiple high-profile publishers.Babuk ransomware group claims an attack on HighWire Press. The leak post provides minimal detail; no specific data exfiltration or encryption claims are detailed in the provided excerpt.
Data the group says was taken
AI dossier — extracted from the leak post- Academic journal content
- Publisher metadata
- Subscriber/user information
- Manuscript submissions
- Platform configuration data
What the group claims
highwirepress.com
Sources
- Victim sitehighwirepress.com
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

