The ransomware attack targeted grupozeta.com and www.grupozetajalisco.com, attributed to the threat actor alphalocker, resulting in the theft of approximately 170 GB of sensitive data including contracts, projects, clients, customers, and employee information from locations in Ciudad Juárez, Samalayuca, and Valle de Juárez. The impacted country is Mexico.
Incident Details
- Victim: grupozeta.com & www.grupozetajalisco.com
- Country: MX
- Actor: alphalocker
- Source: http://mydatae2d63il5oaxxangwnid5loq2qmtsol2ozr6vtb7yfm5ypzo6id.onion/blog_1-21
- Discovered: 2025-09-16 19:36:53.067569
- Published: 2025-09-16 19:36:34.142207
Information
- Ransomware attack targeted grupozeta.com and www.grupozetajalisco.com.
- The affected country is Mexico.
- The suspected actor is alphalocker.
- Approximately 170 GB of data was compromised.
- The breach impacted multiple locations including Ciudad Juárez, Chihuahua, and Valle de Juárez, Jalisco.
- Data stolen includes contracts, projects, clients, customers, and employee information.
Disclaimer: This post is based on public claims made by the ransomware group "alphalocker". I cannot confirm the accuracy of the information. However, I would be happy to share any official statement from the affected organization to provide clarification.