Ransomware victim disclosure
← All victimsHBS - Soluzioni ERP SAP e trasformazione digitale
listed as brainsystem.eu · Claimed by Funksec · listed 1 year ago
Status timeline
- ListedFeb 4, 2025
- Data leakeddate unknown
At a glance
- Group
- Funksec
- Status
- Data leaked
- Country
- European Union
- Sector
- Technology
- Listed on leak site
- Feb 4, 2025
About the victim
AI dossier — public-source company profileHBS is an Italian IT consulting firm specializing in ERP solutions, primarily SAP Business One and SAP S/4HANA implementations. They provide digital transformation services for small and medium-sized enterprises (PMI) across sectors including manufacturing, logistics, construction, and public administration.
- Industry
- Enterprise Resource Planning (ERP) & Digital Transformation Consulting
Attack summary
Severity: medium — Data has been published and the company operates in a sensitive sector handling client ERP/business-critical information, but no specific regulated data categories (PII at scale, financial records, medical data) are explicitly confirmed in the available information.The ransomware group funksec claims to have compromised brainsystem.eu and published exfiltrated data. The specific nature of data exfiltration and operational impact is not detailed in the available post excerpt.
Data the group says was taken
AI dossier — extracted from the leak post- Business documents
- ERP system configurations
- Client project data
- Corporate files
Original description
AI-summarised, not from the leak postBrainsystem.eu is an IT company that provides modern technology solutions for businesses across various industries. Their services include systems implementation, data protection and recovery, IT infrastructure installation and maintenance, and cloud computing. Brainsystem.eu is known for leveraging advanced technology to ensure efficient, secure, and reliable operations for its clients.
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

