HackerFeeds
All ransomware incidents
comercialautomotriz.com

Ransomware group tengu hits https://comercialautomotriz.com

MEDIUM
·Manufacturing·EC·2026-01-16

https://comercialautomotriz.com — a manufacturing target operating in EC has been listed by the tengu ransomware group on 2026-01-16. The information below reflects what the threat actor has publicly claimed on their leak site; the details have not been independently verified.

Incident Report

Target Organizationhttps://comercialautomotriz.com
Threat Group
tengu
SummaryComercial Automotriz de los Altos S.A. de C.V. is a Mexican small/medium-sized company operating in the automotive and tire sector. It specializes in: The sale of tires and auto parts Mechanical services and maintenance Retail sales and spare parts for vehicles It operates in several states, including Jalisco, Michoacán, and Aguascalientes, within the Los Altos region of Mexico.
Date of Breach2026-01-16
Discovery Date2026-01-16
RegionEC
Target Domaincomercialautomotriz.com
Business SectorManufacturing
Severity
MEDIUM

Claim by tengu

Comercial Automotriz de los Altos S.A. de C.V. is a Mexican small/medium-sized company operating in the automotive and tire sector. It specializes in: The sale of tires and auto parts Mechanical services and maintenance Retail sales and spare parts for vehicles It operates in several states, including Jalisco, Michoacán, and Aguascalientes, within the Los Altos region of Mexico.

Posted by the tengu threat actor on its public leak site. This is the group's own statement and has not been independently verified by HackerFeeds.

Sources

Victim website

comercialautomotriz.com

Leak post (onion / Tor)

tor

http://longcc4fqrfcqt5lzceutylaxir6h66fp6df3oin6mvwvz6pfdbxc6qd.onion/blog/56d5ba2b78a185c8232a69cf3e5be18f67f5ee8704a61dd0556b672b5a92e83c/

Open this URL in Tor Browser. Browsing leak sites carries real risk — view passively, never click further.

Disclaimer

HackerFeeds does not engage in the exfiltration, downloading, taking, hosting, viewing, reposting, or disclosure of any stolen information. All breach data reported here is sourced from publicly available threat intelligence feeds for awareness purposes only.