Ransomware victim disclosure
← All victimsObra Play
Claimed by Killsec · listed 1 year ago
Status timeline
- ListedMar 20, 2025
- Data leakeddate unknown
At a glance
- Group
- Killsec
- Status
- Data leaked
- Country
- United States
- Listed on leak site
- Mar 20, 2025
About the victim
AI dossier — public-source company profileObra Play is a Brazilian B2B procurement platform that connects construction suppliers (fornecedores) with builders and construction companies (construtoras). The platform facilitates daily quotation exchanges, with over 2,000 active builders, 15,000 registered suppliers, and approximately R$3 billion in annual construction material purchases across Brazil.
- Industry
- Construction Materials & Procurement Platform
Attack summary
Severity: low — No proof of data exfiltration or operational impact has been published. The disclosure status indicates data was published, but the leak post itself is marked 'N/A' with no supporting evidence, screenshots, or details of compromised information provided.The leak post provides no details on the attack method, scope of data exfiltration, or ransom demands. No proof files or screenshots are referenced in the available disclosure information.
What the group claims
N/A
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

