The ransomware claim alleges that threat actor safepay targeted optivosa.com, a wholesale distributor in Mérida, Yucatán, Mexico, demanding ransom for data decryption. The attack has impacted Mexico.
Incident Details
- Victim: optivosa.com
- Country: MX
- Actor: safepay
- Source: http://safepaypfxntwixwjrlcscft433ggemlhgkkdupi2ynhtcmvdgubmoyd.onion/blog/post/optivosacom/
- Discovered: 2025-08-26 09:47:17.432769
- Published: 2025-08-26 09:47:03.307599
Information
- Ransomware attack targeted optivosa.com.
- The incident involved the actor known as safepay.
- Optivosa is a wholesale distributor based in Mérida, Yucatán.
- The company supplies a wide range of products for stationery stores, offices, and other clients.
Disclaimer: This post is based on public claims made by the ransomware group "safepay". I cannot confirm the accuracy of the information. However, I would be happy to share any official statement from the affected organization to provide clarification.