The KillSec ransomware group claims to have breached Vanan Online Services, a United States-based company that provides a comprehensive range of language services, including translation, transcription, and subtitling to a global clientele.
The attack was posted on the group’s dark web leak site, where they have begun to publish proof of the compromise. The evidence suggests a significant data exfiltration event, impacting the sensitive documents entrusted to the company by its customers.
According to the actor, the compromised data includes a vast collection of highly sensitive personal and financial documents. The samples released by the group include:
- Passports (United States, Greek Diplomatic)
- Birth certificates
- Invoices containing customer names and addresses
- Signed legal documents
- Tax and vehicle registration forms
- Other forms of personal identifiable information (PII)
