Ransomware Group: AKIRA

VICTIM NAME: Fogelman Management Group

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the AKIRA Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page references Fogelman Management Group, a firm specializing in multifamily investment and property management based in the United States. According to the available information, the attack was publicly disclosed on April 24, 2025, with the breach date recorded as April 23, 2025. The perpetrators claim to have gained access to over 12GB of sensitive corporate data, which they intend to release or have already leaked. The compromised data reportedly includes approximately 4,000 files containing personal information of employees—such as social security numbers, dates of birth, phone numbers, and email addresses—as well as financial documentation, audits, payment details, corporate nondisclosure agreements, and confidential trial documents. The leak suggests these files contain critical and confidential information, posing a significant risk to the involved individuals and the organization’s integrity.

The page indicates that the leak may contain various types of sensitive data, and it includes references to potential data exposures relevant to employee privacy and corporate security. Screenshots or visual evidence of the leaked documents or the attack are not provided. Further details imply that the attack is part of a coordinated operation by a group identified as “akira.” No direct download links or URLs to the leaked data are publicly shared on this page. The breach highlights severe implications for data privacy, emphasizing the importance of cybersecurity measures for organizations handling sensitive personal and financial information.