Ransomware Group: MONTI

VICTIM NAME: Amtech Software

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the MONTI Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page pertains to a cybersecurity incident targeting Amtech Software, a company operating within the technology sector specializing in enterprise resource planning (ERP) software. The attack was discovered on May 7, 2025, and the breach appears to have exposed sensitive data associated with the victim. The threat actor group associated with this incident is identified as “monti.” The leak includes visual evidence in the form of a screenshot depicting internal documents or data, indicating a significant breach involving the compromise of internal information.

The leak page provides a claim URL hosted on a dark web onion site, where alleged stolen data can be reviewed. There is an emphasis on the severity of the attack, highlighting that attacker entities have made confidential business information accessible. Despite the detailed presentation, no specific personally identifiable information (PII) or sensitive customer data is disclosed publicly. The incident appears to be a targeted attack on technological infrastructure, with potential implications for the victim’s operations. The page underscores the importance of cybersecurity vigilance for organizations handling enterprise software solutions.