Ransomware victim disclosure
← All victimsKaradeniz Holding (karadenizholding.com)
Claimed by Fog · listed 1 year ago
Status timeline
- ListedFeb 3, 2025
- Data leakeddate unknown
At a glance
About the victim
AI dossier — public-source company profileKaradeniz Holding is a Turkish conglomerate founded in 1948 that operates primarily in the energy sector, with additional interests in finance, real estate, and shipbuilding. The company is known for its Powership fleet (45 vessels) and LNG operations, generating over 8,000 MW of installed capacity across 20+ countries with 3,000+ employees.
- Industry
- Energy (Power Generation & Marine Energy)
- Employees
- 3000+
- Founded
- 1948
Attack summary
Severity: high — Confirmed exfiltration of 1.5 TB from a large, multinational energy company with critical infrastructure relevance. Scale and nature of data warrant high severity despite limited disclosure details.Fog ransomware group claims to have exfiltrated 1.5 TB of data from Karadeniz Holding. The post indicates data publication but provides minimal detail on specific data categories or operational impact.
Data the group says was taken
AI dossier — extracted from the leak post- Corporate databases
- Business records
- Operational data
What the group claims
1.5 TB
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

