Ransomware victim disclosure
← All victimsMinistry of Labour, Thailand
listed as mol.go.th · Claimed by Devman · listed 1 year ago
Status timeline
- ListedJul 17, 2025
- Data leakeddate unknown
At a glance
- Group
- Devman
- Status
- Data leaked
- Country
- Thailand
- Sector
- Public Sector
- Listed on leak site
- Jul 17, 2025
About the victim
AI dossier — public-source company profileThe Thai Ministry of Labour (กระทรวงแรงงาน) is a Thai government ministry responsible for labour policy, worker protection, social security, skill development, and employment services. It operates call centre 1506 and manages multiple e-services for public assistance.
- Industry
- Public Sector - Government Labour Ministry
Attack summary
Severity: critical — Attack on a critical Thai government ministry responsible for labour and social security, with confirmed data publication and a $15M ransom demand. Likely exposure of sensitive government and worker PII at national scale.The devman group claims to have attacked the Ministry of Labour's systems and is demanding $15,000,000 USD ransom. The group has disclosed data from the attack, though the specific data exfiltrated is not detailed in the available post excerpt.
Data the group says was taken
AI dossier — extracted from the leak post- Government labour records
- Social security information
- Employment data
- Internal government communications
- Potentially PII of workers and civil servants
What the group claims
15000000 USD
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

