Ransomware Group: FUNKSEC

VICTIM NAME: ndceg[.]com

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the FUNKSEC Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page associated with NDC, an online B2B sales platform, reveals significant data exfiltration including a complete backup of the website, totaling approximately 20GB. This data includes sensitive information such as SSH private keys and various email messages. The attackers are offering access to these materials for a ransom of $500. The page clearly emphasizes the critical nature of the compromised data and the urgency of the situation. As per the published report, the ransom demand stands at $5,000, with a specified deadline for compliance set for January 10, 2025. The presence of such sensitive data underscores the potential ramifications for affected individuals or businesses.

Additional details highlight the nature of NDC’s operations, describing it as a platform developed by Wonder Travel aimed at improving the efficiency and profitability of travel service bookings. This context raises concerns about the possible impact on customer data and business functions given the leak’s implications. The leak page also showcases multiple images; while their contents remain undisclosed, their presence suggests additional, potentially sensitive visualization of the compromised data. It is vital for stakeholders to remain vigilant and consider the risks associated with such compromises, especially in sectors involving sensitive client interactions and data security.