Ransomware group payload hits Mosaic Partners
Mosaic Partners — a business services target has been listed by the payload ransomware group on 2026-06-26. The information below reflects what the threat actor has publicly claimed on their leak site; the details have not been independently verified.
Incident Report
| Target Organization | Mosaic Partners |
|---|---|
| Threat Group | payload |
| Summary | The Swiss company Mosaic Partners specializes in providing IT services, software development, and systems engineering. It creates tailored digital solutions and applications to optimize business processes, covering areas such as CRM, cloud computing, and process management (e.g., in winemaking). The company's products are adapted to individual client needs, ensuring easy integration, data security, and rapid customization to meet market demands. |
| Date of Breach | 2026-06-26 |
| Discovery Date | 2026-06-26 |
| Region | — |
| Target Domain | — |
| Business Sector | Business Services |
| Severity | MEDIUM |
Claim by payload
The Swiss company Mosaic Partners specializes in providing IT services, software development, and systems engineering. It creates tailored digital solutions and applications to optimize business processes, covering areas such as CRM, cloud computing, and process management (e.g., in winemaking). The company's products are adapted to individual client needs, ensuring easy integration, data security, and rapid customization to meet market demands.
Posted by the payload threat actor on its public leak site. This is the group's own statement and has not been independently verified by HackerFeeds.
Sources
Leak post (onion / Tor)
http://payloadrz5yw227brtbvdqpnlhq3rdcdekdnn3rgucbcdeawq2v6vuyd.onion/posts/1dd5a657-4b5f-49f0-9e0b-26cde29148ca
Open this URL in Tor Browser. Browsing leak sites carries real risk — view passively, never click further.
Disclaimer
HackerFeeds does not engage in the exfiltration, downloading, taking, hosting, viewing, reposting, or disclosure of any stolen information. All breach data reported here is sourced from publicly available threat intelligence feeds for awareness purposes only.