Ransomware Group: CRYPTO24

VICTIM NAME: Choice AG

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the CRYPTO24 Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

This leak concerns a Switzerland-based company specializing in investment and risk management solutions. The victim, identified as “Choice AG,” offers software and asset management services designed for institutional and private investors. Their comprehensive services include portfolio management and risk analysis across various asset classes such as bonds and real estate. The compromised data likely includes extensive information, with an estimated volume of 800GB, which signifies a significant breach affecting the company’s operations. The attack was discovered on May 29, 2025, indicating that malicious actors gained access to sensitive internal data, potentially impacting client confidentiality and business functions. Although specific details of data leaks or exploited vulnerabilities are not provided, the incident underscores the importance of cybersecurity measures for firms handling financial data. The leak page features visual evidence such as screenshots of internal documents, emphasizing the severity of the breach. Download links are present, which may lead to data sets or further details on the compromised information, posing ongoing risks to stakeholders. The attack is attributed to the group “crypto24,” associated with high-profile ransomware operations. This incident highlights the critical need for organizations in the financial sector to bolster their defenses against cyber threats.