[WORLDLEAKS] – Ransomware Victim: Sika Footwear
Ransomware Group: WORLDLEAKS
VICTIM NAME: Sika Footwear
NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the WORLDLEAKS Onion Dark Web Tor Blog page.
AI Generated Summary of the Ransomware Leak Page
The leak page identifies the victim as Sika Footwear, a Danish company described as operating in the Consumer Services sector. The description states that Sika Footwear designs and sells work footwear—shoes, clogs, and boots—for professionals across healthcare, hospitality, and construction, emphasizing comfort, durability, foot safety, and style. The post is attributed to the threat actor group worldleaks and is dated 2025-08-26 11:07:28.000000; since no explicit compromise date is provided in the data, the post date is treated as the publication date. The page includes a claim URL, a typical feature of ransomware extortion posts, but there are no downloadable files or visible images attached to the listing (downloads_present is false, images_count is 0). No ransom amount or data size is disclosed in the provided fields.
There is no visible media on the listing—no screenshots or internal documents are shown, and no personal data appears in the excerpt. The post centers on identifying Sika Footwear as a victim, with no other company names carried forward in this summary. The presence of a claim URL suggests an extortion or data-disclosure component common to ransomware leak posts, though the exact impact (encryption vs. data leakage) is not explicitly stated in the available fields. The listing is associated with Denmark-based Sika Footwear and the worldleaks group, reinforcing the ransomware-leak context without presenting concrete data within this excerpt.
A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.
If you like the site, please support us on “Patreon” or “Buy Me A Coffee” using the buttons below
To keep up to date follow us on the below channels.
