[TENGU] – Ransomware Victim: STAR LÉGUMES
NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal issues relating to the content should be directed at the attackers, not RedPacket Security. This blog is an editorial notice informing that a company has fallen victim to a ransomware attack. RedPacket Security is not affiliated with any ransomware threat actors or groups and will not host infringing content. The information on this page is automated and redacted whilst being scraped directly from the TENGU Onion Dark Web Tor Blog page.
AI Generated Summary of the Ransomware Leak Page
STAR LÉGUMES, a Morocco-based wholesale distributor of fruits, vegetables, spices, and dried seeds operating from Casablanca and the surrounding area, appears as a victim in a leak post published on a ransomware site. The post, dated October 23, 2025, identifies STAR LÉGUMES as a victim and characterizes the incident as a data leak rather than an encryption event. The organization is described as a registered limited liability company (RC 385393) with a workforce of roughly 10 to 20 employees focused on supplying, storing, and delivering high-quality produce to Moroccan wholesale markets. The post presents STAR LÉGUMES as a traditional wholesale operator in the agricultural sector and frames the breach as a public data exposure.
The leak page asserts that a broad set of internal information has been exposed and made accessible to anyone, including supplier contracts, employee records, financial records, inventory details, and customer transaction records. The post indicates that internal data is now accessible through the leak site, which is consistent with data-leak or double-extortion ransomware narratives. The page includes fourteen images, described in general terms as internal documents or screenshots, that accompany the claims. A claim URL is noted on the page, providing a pathway for additional information or materials related to the breach, though no specific URLs are revealed here.
Overall, the leak highlights a data-exposure breach affecting STAR LÉGUMES in Morocco’s agriculture and food production sector. The exposure of supplier, employee, financial, inventory, and customer data could pose reputational, regulatory, and operational risks for the company and its partners. No ransom figure is disclosed in the excerpt, and there is no explicit information about encryption status in this post. The incident underscores the ongoing threat ransomware leak sites pose to wholesale distributors in the region and the potential impact of exposed records on day-to-day operations.
Support Our Work
A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.
If you like the site, please support us on Patreon or Buy Me A Coffee using the buttons below.
