The Alpha Locker ransomware group claims to have breached Bangkok Eagle Wings Co.,Ltd. (BEW), a prominent Thai manufacturing company. Based in Bangkok, BEW specializes in stamping, welding, assembly, and painting processes, reportedly serving major clients in the automotive industry.
The threat actor group has listed BEW on its data leak site, threatening to publish all exfiltrated data within a set deadline, a common tactic used in double-extortion ransomware attacks.
According to the actor, the compromised data includes a vast array of sensitive internal files. The proof, which includes screenshots of directory structures, suggests the data contains:
-
Financial and performance metrics (e.g., “FG KPI” folders from 2012-2022)
-
Production and scheduling files (e.g., “Production Control Performance,” “Schedule 2011-2022,” “Material forecast”)
-
Major customer-related data (e.g., folders for “Nissan,” “ISUZU,” “MMTh,” “FORD”)
-
Internal operations and logistics documents (e.g., “Customer Complaints,” “Audit HR report,” “PACKING MMTh PLANT KD”)
-
Various sensitive spreadsheets, documents, and reports












