Ransomware Group: CRYPTO24

VICTIM NAME: SOUBEIRAN CHOBET S[.]R[.]L[.]

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the CRYPTO24 Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page reports a significant data breach involving a company based in Argentina. The attackers exfiltrated over 300GB of highly sensitive and business-critical information from internal servers. The compromised data includes comprehensive databases such as financial records, customer contracts, complaint logs, and various operational documents. It also involves research and development datasets, proprietary pharmaceutical formulations, regulatory compliance files, audit reports, and other confidential information. The attackers claim to have obtained full access to this critical data, which could have severe implications for the company’s operations and reputation.

The incident was discovered on July 22, 2025, and the threat group responsible is identified as “crypto24.” The leak page indicates the presence of stolen data, with references to the size of the exfiltrated information, totaling approximately 300GB. The attackers have not listed any specific download links or provided publicly accessible samples within the leak page, but the detailed description underscores the extent of the breach. The page also includes a brief mention of internal logistical details, such as the company’s country, Argentina, and its broad activity sector, which remains unspecified. Images or screenshots are not available on this leak, but the detailed content emphasizes the seriousness of the incident and the potential impact on the victim’s operations.