Ransomware victim disclosure
← All victimsSomotsoft
Claimed by Worldleaks · listed 1 year ago
Status timeline
- ListedJul 21, 2025
- Data leakeddate unknown
At a glance
- Group
- Worldleaks
- Status
- Data leaked
- Country
- United States
- Sector
- Technology
- Listed on leak site
- Jul 21, 2025
About the victim
AI dossier — public-source company profileSomotsoft is a technology services company specializing in custom software development, consulting, and IT managed services. Established in 2002, they serve businesses across multiple industries using their proprietary 'Somotsoft Way' methodology, with global operations including offices in the USA and Vietnam.
- Industry
- Custom Software Development & IT Consulting
- Founded
- 2002
Attack summary
Severity: low — Post contains only a listing/announcement with no proof files, screenshots, or detailed information about exfiltrated data types. No operational impact or sensitive data categories explicitly confirmed.Worldleaks claims to have compromised Somotsoft and published data. No specific details on encryption, exfiltration method, or data categories are provided in the available post excerpt.
Original description
AI-summarised, not from the leak postSomotsoft is a technology company specializing in custom software development, consulting and technology services. Established in 2002, they address the IT needs of businesses across various industries. Using their own methodology known as the "Somotsoft Way", they provide solutions to clients by leveraging the latest technologies. They also offer IT managed services and mobile application development. Their operations are global, with offices in the USA and Vietnam.
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

