Ransomware victim disclosure
← All victimsKurosu & Cía. S.A.
listed as kurosu.com.py · Claimed by Funksec · listed 2 years ago
Status timeline
- ListedDec 10, 2024
- Data leakeddate unknown
At a glance
About the victim
AI dossier — public-source company profileKurosu & Cía. S.A. is a Paraguayan distributor and service provider specializing in John Deere agricultural, construction, and forestry equipment. The company operates a network of service centers across Paraguay and offers financing, spare parts, maintenance, and specialized support services for heavy machinery.
- Industry
- Heavy Equipment & Agricultural Machinery Distribution
- Address
- Ruta PY06, Km 11, Dr. Juan Leon Mallorquin, 6000 Encarnación, Paraguay
Attack summary
Severity: low — Post contains only generic AI-generated description with no actual proof files, specific data inventory, or substantive evidence of exfiltration or encryption. No operational impact stated.The funksec group claims to have compromised Kurosu & Cía. S.A. and published data; however, the leak post contains only AI-generated promotional text with no specific details about exfiltrated files, data types, or operational impact.
Original description
AI-summarised, not from the leak postKurosu S.A. is a prominent company in Paraguay, specializing in the automotive industry. It is a key distributor of Toyota vehicles, offering a range of cars, trucks, and SUVs. The company is known for its commitment to quality and customer service, providing maintenance and repair services through its extensive network of service centers. Kurosu S.A. plays a significant role in Paraguay's automotive market.
Sources
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

