stormous is claimed to have hit jaggroup.com with an UPDATE-FULL DATA DUMP ransomware incident, exfiltrating a full database including corporate emails (@jaggroup.com), Active Directory domain logins, and plain-text passwords, along with Microsoft Dynamics GP data, license keys, financial reports, and system configuration. The attacker allegedly stole compressed archives (zBackups.zip and wetransfer packages) and additional artifacts like SQL connection data and IM.mdb files, plus project, user, purchasing, and sales import logs. #
Incident Details
- Victim: jaggroup.com UPDATE-FULL DATA DUMP
- Sector: Not Found
- Country:
- Actor: stormous
- Source:
- Discovered: 2026-06-21T13:36:57.480195+00:00
- Published: 2026-06-20T00:00:00+00:00
Information
- UPDATE-FULL DATA DUMP by stormous
- Full database containing corporate emails, Active Directory domain logins, and clear plain-text passwords
- Complete Microsoft Dynamics GP databases, software license keys, financial reports, and system configuration
- Multiple compressed archives, including zBackups.zip and wetransfer packages
- SQL server connection data and IM.mdb database files
- Internal project management sheets, user listings, purchasing, and sales import logs
Disclaimer: This post is based on public claims made by the ransomware group "stormous". I cannot confirm the accuracy of the information. However, I would be happy to share any official statement from the affected organization to provide clarification.