Ransomware Group: INCRANSOM

VICTIM NAME: Kittery Police Department

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the INCRANSOM Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page pertains to the Kittery Police Department, a public sector entity based in the United States. The attack was identified on June 6, 2025, with the threat actor group identified as “incransom.” The page features a screenshot of what appears to be internal documents or data related to the police department, indicating a breach of sensitive information. No specific details about the compromised data are publicly disclosed on the leak page, but the inclusion of the screenshot suggests that confidential documents may have been accessed or exfiltrated. The posted date of the leak is June 6, 2025, with the image and claim link providing further details accessible via the Dark Web.

The description provided emphasizes the department’s mission to collaborate with the community in law enforcement and ensuring public safety. There are no personal PII or sensitive operational details explicitly revealed within the visible content, though the presence of internal images implies potential exposure of confidential information. The leak is part of a broader attack impacting public safety institutions, highlighting the seriousness and potential risks associated with such cyber incidents. The leak page includes links for further disclosures and an image that likely contains screenshots of internal data, which is typical in ransomware data leaks. The attack underscores the importance of cybersecurity measures in public sector organizations.