Ransomware Group: AKIRA

VICTIM NAME: Diedrich Coffee

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the AKIRA Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page pertains to Diedrich Coffee, a company specializing in sourcing, roasting, and selling high-quality coffees through various channels including retail stores and online platforms. The attack was discovered on April 22, 2025, and the incident is associated with the cyber threat group “akira.” According to the leaked information, the attackers have announced their intention to release over 15 GB of sensitive corporate documents. These documents potentially include employee and customer files, financial records such as audits and payment details, and confidential company agreements. The breach indicates a significant compromise of internal data, which could have serious implications for the company’s operations and customer privacy.

The leak page does not include specific details about the compromised data beyond its volume and type. It also does not provide direct download links or references to specific data files. The mention of corporate confidentiality and sensitive information underscores the severity of the breach. The company’s description states its dedication to high-quality coffee products and its distribution channels, but no additional operational or security details are provided. The attack’s discovery timestamp suggests a recent breach, emphasizing the urgency for incident response and mitigation efforts. Visual evidence such as screenshots or images are not included on the leak page, focusing solely on the threat and the data involved.