Ransomware Group: EVEREST

VICTIM NAME: Voltus GmbH

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the EVEREST Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

Voltus GmbH is a German technology company that provides demand-side energy management services, focusing on distributed energy resources and aggregated load reduction to help industrial and commercial customers reduce energy usage. The ransomware leak page identifies Voltus GmbH as a victim and attributes the post to the Everest threat group. The page’s post date is 12 August 2025; there is no separate compromise date provided in the data, so the post date is treated as the publication date. A claim URL is present on the page, indicating a publicly accessible point of reference for the breach. The page includes 11 image attachments, described as screenshots of internal documents or data, hosted on onion domain addresses (defanged here as onion[.]onion).

The leak page centers on Voltus GmbH, with the victim’s industry listed as Technology. The textual excerpt reiterates the victim’s name, but the dataset does not specify whether the attack is described as encrypted data or a data leak, and no ransom amount is disclosed. The presence of a claim URL and multiple images aligns with typical ransomware leak posts that seek public exposure or pressure toward negotiation. The 11 images likely represent internal documents or charts, though their exact contents are not described in this summary. No additional company names are emphasized beyond the stated victim in this digest.