Ransomware Group: FUNKSEC

VICTIM NAME: sorbonne-universite[.]fr

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the FUNKSEC Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page associated with Sorbonne Université (sorbonne-universite.fr) indicates a significant data breach involving approximately 20GB of sensitive information, including plans, reports, and user credentials. The page features alarming statements urging individuals to search for personal identifiers on compromised devices, highlighting the potential risks to users connected to the institution. With a deep-rooted history in research and education, Sorbonne Université has emerged as a key institution following its establishment in 2018, which resulted from the merger of the prestigious Université Pierre et Marie Curie and Université Paris-Sorbonne.

The leak page furnished by the ransomware group includes a total of four images, suggesting the presence of visual material that may depict internal documentation or further evidence of the breach. It is noted that there are no active download links available for the leaked information, although the sheer volume of the compromised data raises significant concerns regarding data security. The leak is attributed to the Funksec ransomware group, as noted by a copyright reference dated 2025, which may indicate the group’s ongoing activities and potential future threats.