Ransomware Group: FUNKSEC

VICTIM NAME: abd-ong[.]org

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the FUNKSEC Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page pertains to ABD (Asociación Bienestar y Desarrollo), a non-profit organization based in Spain that has been operational since 1980. The organization is committed to addressing social issues and reducing inequalities through various programs that offer support in areas such as mental health, childhood, family welfare, and poverty. The extracted data includes a considerable amount of sensitive information, quantified at approximately 3GB of SQL data and 1GB of PDFs, which reportedly contain full names and contact details of users associated with the organization. The reported intent of the attackers is to demand a ransom payment of $5,000, after which they claim not to disclose the data if paid. Otherwise, the data is indicated to be made public after a specified endpoint in 2025.

The page also features three images, which likely depict internal documents, including possibly screenshots of the exfiltrated data or communications related to the ransom demand. This incident highlights the significant risks that non-profit organizations face regarding their data security and the potential repercussions of data breaches on clients they serve. The focus on financial discussions and the implications for sensitive user information place additional pressure on organizations to enhance their data protection measures. The ransomware group claims that their demands are rooted in securing the organization’s data and protecting its users, yet the underlying threat of public data exposure remains a serious concern.