HackerFeeds
All ransomware incidents
jifco.co

Ransomware group netrunner hits Jordan India Fertilizer Company

MEDIUM
·Agriculture and Food Production·JO·2026-04-03

Jordan India Fertilizer Company — a agriculture and food production target operating in JO has been listed by the netrunner ransomware group on 2026-04-03. The information below reflects what the threat actor has publicly claimed on their leak site; the details have not been independently verified.

Incident Report

Target OrganizationJordan India Fertilizer Company
Threat Group
netrunner
SummaryIndian Farmers Fertiliser Cooperative (IFFCO) and Jordan Phosphates Mines Company Ltd (JPMC) had formed a Limited Liability Joint Venture Company, namely Jordan India Fertiliser Company (JIFCO) on March 6, 2008 in Amman, Jordan under the 'Free Zone' system to set up a Phosphoric Acid Plant of 1500 tonnes per day P2O5 capacity at Eshidiya in Jordan. In this company, IFFCO and its affiliates hold 52 % equity, while JPMC holds 48 % equity.
Date of Breach2026-04-03
Discovery Date2026-04-03
RegionJO
Target Domainjifco.co
Business SectorAgriculture and Food Production
Severity
MEDIUM

Claim by netrunner

Indian Farmers Fertiliser Cooperative (IFFCO) and Jordan Phosphates Mines Company Ltd (JPMC) had formed a Limited Liability Joint Venture Company, namely Jordan India Fertiliser Company (JIFCO) on March 6, 2008 in Amman, Jordan under the 'Free Zone' system to set up a Phosphoric Acid Plant of 1500 tonnes per day P2O5 capacity at Eshidiya in Jordan. In this company, IFFCO and its affiliates hold 52 % equity, while JPMC holds 48 % equity.

Posted by the netrunner threat actor on its public leak site. This is the group's own statement and has not been independently verified by HackerFeeds.

Sources

Victim website

jifco.co

Leak post (onion / Tor)

tor

http://netrunrsb3bivj5gnwajzxlig5qkteb6edgthxj7fmsvhkzxtwfxwaad.onion/view/jifco.co

Open this URL in Tor Browser. Browsing leak sites carries real risk — view passively, never click further.

Disclaimer

HackerFeeds does not engage in the exfiltration, downloading, taking, hosting, viewing, reposting, or disclosure of any stolen information. All breach data reported here is sourced from publicly available threat intelligence feeds for awareness purposes only.