Ransomware Group: FUNKSEC

VICTIM NAME: gstpam[.]org

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the FUNKSEC Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page associated with the entity identified as “gstpam.org” highlights significant data breaches that affect the public sector within India. According to the information provided, the group responsible for the breach is known as “funksec.” The published date of the leak is December 15, 2024, which also marks the discovery of the compromised data. The page does not specify a compromise date beyond this, suggesting a focus on the recent disclosure of the breach rather than previous incidents.

The leak indicates that a total of nine users’ data might have been compromised, with four associated URLs possibly linked to this information. The leak page includes visual content such as screenshots of internal documents, providing a glimpse into the potentially sensitive nature of the compromised data. However, no specific details about the users, including any PII, are disclosed in the report. Furthermore, updates regarding the breach suggest adjustments to the entity’s location, underlining an ongoing response to the incident. The overall activity of the victim is classified as related to the public sector, reinforcing the potential impact of such breaches on governmental operations.