Ransomware Group: SINOBI

VICTIM NAME: TELACU College

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the SINOBI Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

TELACU College is presented on the leak page as part of TELACU, a United States–based organization described as a comprehensive entity focused on community development through services such as construction management, real estate development, and financial services. The page details TELACU’s housing programs—family, mixed-use, and senior housing—alongside commercial and industrial development, and it highlights education-oriented foundations and programs aimed at college readiness and career success for diverse populations. The described client base appears to be community members seeking housing, educational resources, and financial services. The post frames the incident as an encryption event accompanied by a full data leak and cites a ransom figure of $107,200,000. The post date is given as August 13, 2025, and the page is labeled Confidential. A claim URL is noted on the leak page, indicating a dedicated data-leak post linked to the claim.

The leak page includes five image attachments—described generically as screenshots or internal documents—that appear intended to substantiate the breach claim. Their exact contents are not detailed in the summary. The attachments reference onion-hosted resources, with the actual URLs defanged or omitted in this summary. There is no indication of publicly downloadable data on the page. Taken together, the page portrays TELACU College as the victim of a ransomware operation emphasizing encryption and a full data leak, consistent with contemporary double-extortion campaigns targeting the education sector.