Ransomware Group: WORLDLEAKS

VICTIM NAME: RattanIndia Power

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the WORLDLEAKS Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page pertains to RattanIndia Power, an Indian energy company engaged in power generation and infrastructure development. The company operates a variety of projects including thermal, solar, and wind energy, with the goal of providing reliable and environmentally sustainable power across India. The leak was discovered on July 21, 2025, and publicly claims that sensitive data associated with the organization has been compromised. The leak is attributed to a malicious attack that occurred earlier, on July 9, 2025. The page includes visual evidence such as a screenshot of internal documents or data that were reportedly leaked, indicating potential exposure of proprietary information. Download links or evidence of data being shared externally are implied but not explicitly detailed in the available information.

The leak is associated with the group “worldleaks,” which specializes in exposing confidential data from various organizations. The victim’s industry classification as energy emphasizes the potential impact of such breaches on critical infrastructure in India. The screenshot provided appears to display internal documents, possibly including technical data or operational details, although these are not explicitly described to avoid sharing sensitive information. Overall, the leak highlights the cybersecurity risks faced by large energy corporations and underscores the importance of coordinated security measures to prevent further data compromises. No personally identifiable information or specific sensitive details are disclosed in the public summary.