Ransomware Group: INCRANSOM

VICTIM NAME: HTC_Högtryckscenter_Sweden

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the INCRANSOM Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page pertains to a Swedish company involved in the manufacturing and sale of various cleaning equipment, including high-pressure washers, industrial vacuum cleaners, and customized car wash solutions. The incident was publicly disclosed on July 17, 2025, and the breach was detected shortly thereafter. The compromised data includes business-related information, company descriptions, and operational details, but no personally identifiable information or sensitive customer data has been reported as leaked. The page features a screenshot of internal documents or website content, indicating the attackers possibly targeted internal assets to extract business intelligence.

The leak does not specify exact details about the extent of data compromised or the specific impact on the company’s operations. There is evidence of access to marketing and operational descriptions, reflecting the company’s profile and activities in Sweden. Download links or indications of data theft are present but not detailed publicly, suggesting the attackers may have stolen business documents or proprietary information. The incident’s timing coincides with the attack date of July 17, 2025, and the website claims the breach is linked to the criminal group incransom. The screenshot included on the leak page provides a visual of internal data or correspondence, but its content has been redacted or sanitized for privacy and clarity.