A ransomware attack targeted CapitalPlus Exchange (CapPlus), a financial services provider supporting SMEs in emerging economies, including Malaysia, aiming to disrupt their operations and financial initiatives. The threat was attributed to the threat actor sinobi, impacting Malaysia.
Incident Details
- Victim: CapitalPlus Exchange
- Country: MY
- Actor: sinobi
- Source: http://sinobi6ftrg27d6g4sjdt65malds6cfptlnjyw52rskakqjda6uvb7yd.onion/leaks/6910f47688b6823fa25dd142
- Discovered: 2025-11-10 00:52:48.450198
- Published: 2025-11-09 20:07:18.635000
Information
- Supports financial institutions in emerging economies by enhancing strategic and operational capacities.
- Provides training and innovative financing solutions for small and medium enterprises (SMEs).
- Initiates programs like the Education Markets Impact Initiative (EMII) and FIRST+ to unlock education finance markets and promote job creation in sectors such as agriculture.
- Improves access to finance to foster economic development and sector growth.
- Partners with local institutions to customize financial services tailored to underserved demographics, including women and youth.
- Uses nearly two decades of experience to aim at reducing poverty through expanded financial services for small businesses.
Disclaimer: This post is based on public claims made by the ransomware group "sinobi". I cannot confirm the accuracy of the information. However, I would be happy to share any official statement from the affected organization to provide clarification.