Ransomware Group: CRYPTO24

VICTIM NAME: N8XT

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the CRYPTO24 Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page pertains to an incident involving the victim organization identified as N8XT, based in Singapore. The data breach affected approximately 3 terabytes of sensitive information stored on servers and network-attached storage devices. The compromised data includes customer information, database content, technical documents, project files, and various company-related documents. The attack was discovered and reported on April 23, 2025, indicating a recent security breach. The leak contains a substantial volume of classified data, which could potentially impact customer privacy, operational confidentiality, and the company’s reputation.

The threat actor responsible for the attack is associated with the group known as Crypto24. No evidence suggests that any employee or third-party data was compromised. The leak primarily features technical and business documents, emphasizing the severity of the breach. The page includes references to data size and a screenshot, although no explicit images or sensitive derivations are provided publicly. There is also a link to the leak online, where further information might be accessible. This incident highlights the importance of comprehensive cybersecurity measures to prevent substantial data exfiltration in similar organizations.