The NightSpire ransomware group claims to have breached Lotus Powergear Pvt. Ltd. (LPPL), an Indian manufacturer based in Bangalore. The company specializes in producing electrical control systems, including generator control panels, motor control panels, and relay panels.
NightSpire, a known double-extortion group, has added the company to its dark web leak site, starting a countdown timer for the public release of the stolen data.
According to the actor, the group exfiltrated 43GB of data during the attack, which allegedly occurred on November 12, 2025. The allegedly compromised data includes:
-
Sensitive business data
-
Employee information
-
Customer information
-
Credentials
The group has threatened to leak the entire data cache on November 18, 2025, if its demands are not met.












