The ransomware group DragonForce has included the Alicante-based company Rolser on its dark web leak page and claims to have 662.7 gigabytes of the company's files in its possession. The firm, founded in 1966 and specializing in shopping trolleys and household goods, has not yet detailed the scope of the incident or the nature of the information allegedly compromised.
The case leaves a central unknown at one of the most sensitive points of the attack. The cybercriminals display a specific volume of data, but have not specified what type of files they may have obtained, nor has the amount of the ransom demanded from the company been disclosed.
DragonForce claimed to have 662.7 gigabytes of Rolser's files
The inclusion of Rolser on the group's leak portal places the Alicante-based company among the targets attributed to a criminal structure that has expanded its activity since the end of 2023. The company was born from the initiative of Vicente Server Ferrer and Isabel Pérez Costa and maintains its activity in the design and production of shopping trolleys and other household items.
For now, Escudo Digital has contacted the firm to confirm the incident and to find out what mitigation measures it has adopted following the appearance of its name on the dark web. The available information does not clarify whether the files mentioned by DragonForce contain corporate data, internal documentation, or information linked to third parties.
The group previously attacked Cofiex and Centro Médico Palafox in Spain
DragonForce operates with the ransomware as a service model, a formula with which different actors can deploy malicious software under the same criminal infrastructure. It also employs double encryption, a tactic that combines system lockout with the threat of publishing stolen information.
Since its emergence at the end of 2023, the group has hit between 200 and 400 organizations in very different sectors, including retail, healthcare, manufacturing, technology, logistics, construction, and professional services. Its international victims include Marks & Spencer, Harrods, and Co op in the United Kingdom.
In Spain, the activity attributed to DragonForce had previously reached the consultancy Cofiex and Centro Médico Palafox. In Rolser's case, the data disseminated by the group on its leak showcase currently sets the public scope of the threat at 662.7 gigabytes of company files.