Ransomware Group: AKIRA

VICTIM NAME: Datrose

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the AKIRA Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page pertains to a company involved in Business Services, specifically operating within the United States. The attack was identified on June 24, 2025, with the breach publicly disclosed approximately 15 hours later. The compromised organization provides a range of outsourcing solutions, including document management, mail services, contact center solutions, accounts payable, and staffing services. The leak contains a significant volume of data—over 5 GB—including sensitive corporate documents such as confidentiality agreements, personal employee information (including social security numbers, dates of birth, email addresses, and physical addresses), financial records like invoices and payment details, as well as nondisclosure agreements. The data exposure poses serious privacy and security concerns for the affected company and its clients, emphasizing the importance of cybersecurity measures for organizations handling sensitive information.

The leak page may include screenshots or visual evidence related to the breach, highlighting the extent of data exfiltration. While specific download links are not provided here, the indication of data being available suggests the potential for further data leaks or criminal resale. The incident was attributed to a threat actor group named “akira.” No personal or company-specific identifiers are included to maintain confidentiality, but the disclosure underscores the significant impact of ransomware attacks on business operations, especially those managing confidential and sensitive data. Organizations in the same industry should review security protocols to mitigate similar threats in the future.