Ransomware victim disclosure
← All victimsSICOL – JS Cobranças e Serviços
Claimed by Spacebears · listed 4 hours ago
Status timeline
- Listed
Jun 5, 2026
- Data leaked
At a glance
- Group
- Spacebears
- Status
- Data leaked
- Country
- Brazil
- Listed on leak site
- Jun 5, 2026
- Data size
- 1.6 TB
About the victim
AI dossier — public-source company profileSICOL – JS Cobranças e Serviços is a Brazilian company specializing in debt collection, credit management, and sales services. They combine digital automation with humanized customer support to help businesses recover debts and optimize sales workflows.
- Industry
- Debt Collection & Credit Management Services
Attack summary
Severity: high — Confirmed exfiltration of 1.6 TB of data including personal information of employees and clients plus financial documents from a debt collection firm that handles sensitive financial data at scale. Debt collection companies process PII and financial information across many third parties, making this a significant exposure.Spacebears claims to have exfiltrated personal information of employees and clients, along with financial documents and other files from SICOL. The group published the data on their leak site without stated ransom demands.
Data the group says was taken
AI dossier — extracted from the leak post- Personal information of employees
- Client personal data
- Financial documents
- Business files
What the group claims
A Brazilian company specializing in debt collection, credit management, and sales services. They blend digital automation with humanized customer support to help businesses recover debts and optimize their sales workflows.
The leak post
captured from the group's siteDo you trust your data to this company? This page contains a list of companies whose clients and business partners entrusted them with their confidential data, but these companies leaked data. The data may contain confidential information such as login credentials, intellectual property, personal and financial data, etc. SICOL – JS Cobranças e Serviços is a Brazilian company specializing in debt collection, credit management, and sales services. They blend digital automation with humanized customer support to help businesses recover debts and optimize their sales workflows. -Personal information of employees and clients -Financial documents -Other files [Geske Haus- und Versorgungstechnik GmbH](http://5butbkrljkaorg5maepuca25oma7eiwo6a2rlhvkblb4v6mf3ki2ovid.onion/companies/46/geske-haus-und-versorgungstechnik-gmbh) Your partner for construction and technology solutions.We are your partner for all your heating, plumbing, and sheet metal work needs. Our family-run business, now in its third generation, has stood for quality, innovation, and customer focus for over half a century. Whatever your needs, we are happy to help and look forward to your inquiry.Our company specializes in it…
Data the group says was taken
- Personal information of employees and clients
- Financial documents
- Other files
Screenshot of the leak post
Sources
Source
Indexed 4 hours agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.