Ransomware Group: INCRANSOM

VICTIM NAME: trocaire[.]edu

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the INCRANSOM Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The leak page pertains to Trocaire College, a private Catholic institution specializing in career-focused education in the United States. The compromised data, collected from a data breach, includes information related to the college’s operations, financial details, and sensitive internal content. The breach was discovered on April 15, 2025, and the data volume involved amounts to approximately 310 GB. attack details indicate the breach was part of an incursion by a ransomware group, which also accessed various credential-stealing malware tools targeting the organization’s employees and third-party vendors. The leaked files include internal documents, confidential data, and screenshots of sensitive information, which may be used maliciously if exploited.

The compromised information involves details about the college’s activities, including its revenue figures of around $24.6 million and workforce of 217 employees. The breach additionally exposed various usernames, employee data, and potentially sensitive information stored within the college’s network infrastructure. The threat actors behind the attack used multiple infostealer malware variants, such as RedLine, Lumma, Raccoon, and others, to extract data. A screenshot provided on the leak page displays internal documents, hinting at significant data exposure that could impact organizational security and privacy. The leak underscores the importance of cybersecurity measures in protecting educational institutions from sophisticated cyber threats.