Ransomware Group: SARCOMA

VICTIM NAME: TRALFO Srl Trasporti e Spedizioni

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the SARCOMA Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak involves TRALFO Srl Trasporti e Spedizioni, a transportation and logistics company based in Italy, established in 1970. The breach was discovered on April 17, 2025, and the leak contains approximately 34 GB of data. The leaked archive includes various files possibly related to company operations, logistics, and internal documentation. TRALFO is a well-established firm with about 250 employees from diverse nationalities, managing a large logistics network across Italy, supported by extensive warehouse facilities spanning 40,000 square meters. The leak appears to include sensitive or operational data, but specific details or documents are not disclosed in the summary. The incident raises concerns about data security within logistics firms.

The leak does not specify personal or PII details about employees or clients. The compromised data may include operational files, internal communications, or logistics documentation, shared in a sizable archive. The leak page features screenshots of internal documents or system interfaces, indicating a breach of company infrastructure. No direct download links are provided publicly, but the presence of a substantial data leak suggests potential exposure of business-critical information. This incident underscores the importance of cybersecurity measures for logistics providers, especially those handling extensive multinational operations and sensitive commercial data. The breach highlights risks associated with cyberattacks targeting large-scale transport and logistics companies, which are crucial to global supply chains.