stormous ransomware actor claimed to have extracted 150 GB of data from sa2000.com, including financial and banking information such as purchase invoices, payable/modified invoices, client payment records, supplier/transport contracts, employee hiring data, shareholder information, and email/document records. The attacker said there is still an opportunity to communicate and resolve the situation, and the company is awaiting further contact from the threat actor, with the impacted country(s) stated as: # (no country provided)
Incident Details
- Victim: sa2000.com UPDATE-FULL DATA DUMP
- Sector: Not Found
- Country:
- Actor: stormous
- Source:
- Discovered: 2026-06-09T11:54:37.024689+00:00
- Published: 2026-06-09T00:00:00+00:00
Information
- 150 GB of data has been extracted.
- The leak includes accounting records, purchase invoices, payable invoices, modified invoices, and banking information.
- Customer payments, client and purchase order records, suppliers, carriers, employees, hiring data, and shareholdersโ information were also included.
- Email communications and email documents were part of the data dump.
- There is still an opportunity to communicate and resolve the situation.
- The companyโs response is still awaited.
Disclaimer: This post is based on public claims made by the ransomware group "stormous". I cannot confirm the accuracy of the information. However, I would be happy to share any official statement from the affected organization to provide clarification.