Ransomware victim disclosure
← All victimsRailway Assets Corporation
listed as rac.gov.my · Claimed by Babuk · listed 1 year ago
Status timeline
- ListedMar 19, 2025
- Data leakeddate unknown
At a glance
- Group
- Babuk
- Status
- Data leaked
- Country
- Malaysia
- Sector
- Public Sector
- Listed on leak site
- Mar 19, 2025
About the victim
AI dossier — public-source company profileThe Railway Assets Corporation (RAC) is a federal statutory body under Malaysia's Ministry of Transport, established in 1992 under the Railways Act 1991. RAC manages railway properties, land, and infrastructure assets across Malaysia's national rail system, providing licensing, leasing, and development services for railway properties and commercial activities.
- Industry
- Government / Public Transportation Infrastructure Management
- Founded
- 1992
Attack summary
Severity: medium — Compromise of a Malaysian government transportation infrastructure entity is significant, but the leak post contains no proof files, detailed claims of exfiltration, or confirmation of data publication. Classification reflects the sensitivity of government infrastructure access without confirmed data breach evidence.Babuk claims to have compromised rac.gov.my. The leak post provides minimal detail on the nature of the attack or data exfiltration; no specific claims of data theft, encryption, or operational disruption are stated in the available excerpt.
What the group claims
rac.gov.my
Sources
- Victim siterac.gov.my
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

