Ransomware Group: CHORT

VICTIM NAME: paaf[.]gov[.]kw

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the CHORT Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page for the website associated with the victim, identified as a player in the Agriculture and Food Production sector, was published on November 17, 2024. This leak page lists specific details indicating the availability of databases and files belonging to the organization. It suggests that sensitive information may have been compromised, although the exact nature of this data is not disclosed. The page suggests a significant breach, given the involvement of multiple third parties and user accounts that could potentially include sensitive or proprietary company information.

The reported data indicates that the ransomware group involved, identified as “chort”, has shared information indicating a breach impacting 30 user accounts and involving three third-party entities. However, no employee-related data appear to have been exploited in this instance, highlighting a focus on external user data. The leak also includes imagery intended to illustrate the seriousness of the breach, with one associated screenshot visually summarizing aspects of the leaked content. The original post can be found on a designated dark web URL related to the attack, further underscoring the ongoing risk for organizations within this industry due to evolving cyber threats.