Ransomware Group: PLAY

VICTIM NAME: IT-IQ Botswana

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the PLAY Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The leak page associated with IT-IQ Botswana indicates that the company operates within the technology sector in Botswana. The discovery of the breach occurred on March 2, 2025, highlighting a significant cybersecurity incident affecting the organization. The ransomware group identified with this breach is referred to as “play,” suggesting a potentially sophisticated attack strategy aimed at compromising sensitive data and systems within the company. While specific details regarding the extent of the data breach are not provided, the implications for the organization could be severe, affecting customer trust and operational integrity.

Additional context regarding the breach reveals that the organization’s website is “www.itiq.co.bw”, classifying it as a target in the cybercrime landscape. The company has been publicly affiliated through the leak, and a screenshot of the ransomware leak page was made available, reflecting the group’s tactics and operations. However, the specific contents of the leak, including any sensitive data or graphics, are not detailed in the extracted data. As of this finding, it remains unclear whether any data download links are present, though the nature of such pages typically indicates the possibility of leaked information. Continued monitoring and protective measures are advised for any clients or associated entities to mitigate potential impacts from this breach.