Ransomware group payload hits El Wastani Petroleum Company (WASCO)
El Wastani Petroleum Company (WASCO) — a energy target operating in LY has been listed by the payload ransomware group on 2026-04-08. The information below reflects what the threat actor has publicly claimed on their leak site; the details have not been independently verified.
Incident Report
| Target Organization | El Wastani Petroleum Company (WASCO) |
|---|---|
| Threat Group | payload |
| Summary | El Wastani Petroleum Company (WASCO) is an Egyptian oil and gas company focused on the exploration, production, and processing of natural gas and condensate. It operates fields and infrastructure, including processing facilities and compression stations, mainly in the Nile Delta and North Sinai regions. The company serves as a regional operator, supporting the development of Egypt’s gas industry. |
| Date of Breach | 2026-04-08 |
| Discovery Date | 2026-04-08 |
| Region | LY |
| Target Domain | — |
| Business Sector | Energy |
| Severity | MEDIUM |
| Data Size | 50 GB |
Claim by payload
El Wastani Petroleum Company (WASCO) is an Egyptian oil and gas company focused on the exploration, production, and processing of natural gas and condensate. It operates fields and infrastructure, including processing facilities and compression stations, mainly in the Nile Delta and North Sinai regions. The company serves as a regional operator, supporting the development of Egypt’s gas industry.
Posted by the payload threat actor on its public leak site. This is the group's own statement and has not been independently verified by HackerFeeds.
Sources
Leak post (onion / Tor)
http://payloadrz5yw227brtbvdqpnlhq3rdcdekdnn3rgucbcdeawq2v6vuyd.onion/posts/29732084-774a-4667-9dcd-b2ebfb6a748a
Open this URL in Tor Browser. Browsing leak sites carries real risk — view passively, never click further.
Disclaimer
HackerFeeds does not engage in the exfiltration, downloading, taking, hosting, viewing, reposting, or disclosure of any stolen information. All breach data reported here is sourced from publicly available threat intelligence feeds for awareness purposes only.