[INCRANSOM] – Ransomware Victim: The Union League of Philadelphia

AI Generated Summary of the Ransomware Leak Page

On November 6, 2025, a ransomware leak post is associated with The Union League of Philadelphia, a United States-based civic organization with a long history dating back to 1862. The post is attributed to the threat group incransom in the dataset. The leak page’s background description emphasizes the organization’s founding, its role in public life, and its motto Amor Patriae Ducit, rather than providing technical breach details. The record does not specify a confirmed compromise date; the key_date is treated as the post date for this entry. No explicit impact type (Encrypted or Data leak) or ransom figure is included in the data, and there are no indicated data volumes or attachments; downloads_present is false and images_count is 0.

Additionally, the leak page indicates a claim URL is present, suggesting that the attackers intend to publish or monetize data related to The Union League of Philadelphia, but the provided data contain no visible screenshots, images, or documents, and there are no files to review. The body_excerpt is empty, and the description remains a historical overview rather than operational content. Consequently, we cannot confirm whether data were actually accessed or exfiltrated, or whether a ransom demand exists. The post does confirm the victim name and the post date, and notes a US location, while providing no industry classification or data artifacts. In short, the page identifies The Union League of Philadelphia and marks November 6, 2025 as the post date, with a claim URL present but without further detail on impact, data types, or ransom.