Ransomware group Deadlock hits Grupolider | Grupo Actual
Grupolider | Grupo Actual — a business services target operating in AO has been listed by the Deadlock ransomware group on 2026-07-10. The information below reflects what the threat actor has publicly claimed on their leak site; the details have not been independently verified.
Incident Report
| Target Organization | Grupolider | Grupo Actual |
|---|---|
| Threat Group | Deadlock |
| Summary | The leaked files will be available for download on May 10, 2026. Grupolider is a prominent Angolan conglomerate that has been operating in the national market since 1999. Headquartered in Catete, Luanda, the group initially started as a freight forwarding company and has since diversified into a wide range of sectors including agriculture, construction, and furniture. Grupo Actual is a human resources and recruitment agency in Portugal that provides temporary work solutions, permanent recruitment, and selection services.Following a rebranding in late 2025, the company formerly known as Leader now operates under the Actual brand. |
| Date of Breach | 2026-07-10 |
| Discovery Date | 2026-07-10 |
| Region | AO |
| Target Domain | grupolider-ao.com |
| Business Sector | Business Services |
| Severity | MEDIUM |
Claim by Deadlock
The leaked files will be available for download on May 10, 2026. Grupolider is a prominent Angolan conglomerate that has been operating in the national market since 1999. Headquartered in Catete, Luanda, the group initially started as a freight forwarding company and has since diversified into a wide range of sectors including agriculture, construction, and furniture. Grupo Actual is a human resources and recruitment agency in Portugal that provides temporary work solutions, permanent recruitment, and selection services.Following a rebranding in late 2025, the company formerly known as Leader now operates under the Actual brand.
Posted by the Deadlock threat actor on its public leak site. This is the group's own statement and has not been independently verified by HackerFeeds.
Sources
Victim website
grupolider-ao.com
Leak post (onion / Tor)
http://deadblogdbdu5wprek7wa2o4ce7rnt6u6ntqeud3hzjjcveosgpsqqqd.onion/s3.php?d=d2FzYWJpOmRhdGEtZ3J1cG9hY3R1YWwucHR8ZXUtY2VudHJhbC0xfEFSUjVHRFQzMFJWVERXTE4xWjFOfFByYVRoWFpHNlZmTzZFY2V0ekQ3M3VBSUZselVkcVozc1RpYTRmejA%3D
Open this URL in Tor Browser. Browsing leak sites carries real risk — view passively, never click further.
Disclaimer
HackerFeeds does not engage in the exfiltration, downloading, taking, hosting, viewing, reposting, or disclosure of any stolen information. All breach data reported here is sourced from publicly available threat intelligence feeds for awareness purposes only.

