Ransomware group funksec hits tsag-agaar.gov.mn
tsag-agaar.gov.mn — a transportation/logistics target operating in MN has been listed by the funksec ransomware group on 2024-12-31. The information below reflects what the threat actor has publicly claimed on their leak site; the details have not been independently verified.
Incident Report
| Target Organization | tsag-agaar.gov.mn |
|---|---|
| Threat Group | funksec |
| Summary | [AI generated] Tsag-agaar.gov.mn is the official website of the National Agency for Meteorology and Environmental Monitoring of Mongolia. The agency is responsible for providing weather forecasts, climate data, and environmental monitoring services across Mongolia. It plays a crucial role in informing the public and government about weather conditions, climate changes, and environmental issues to aid in planning and decision-making. |
| Date of Breach | 2024-12-31 |
| Discovery Date | 2024-12-31 |
| Region | MN |
| Target Domain | tsag-agaar.gov.mn |
| Business Sector | Transportation/Logistics |
| Severity | MEDIUM |
Claim by funksec
[AI generated] Tsag-agaar.gov.mn is the official website of the National Agency for Meteorology and Environmental Monitoring of Mongolia. The agency is responsible for providing weather forecasts, climate data, and environmental monitoring services across Mongolia. It plays a crucial role in informing the public and government about weather conditions, climate changes, and environmental issues to aid in planning and decision-making.
Posted by the funksec threat actor on its public leak site. This is the group's own statement and has not been independently verified by HackerFeeds.
Sources
Victim website
tsag-agaar.gov.mn
Leak post (onion / Tor)
http://7ixfdvqb4eaju5lzj4gg76kwlrxg4ugqpuog5oqkkmgfyn33h527oyyd.onion/sell32.html
Open this URL in Tor Browser. Browsing leak sites carries real risk — view passively, never click further.
Disclaimer
HackerFeeds does not engage in the exfiltration, downloading, taking, hosting, viewing, reposting, or disclosure of any stolen information. All breach data reported here is sourced from publicly available threat intelligence feeds for awareness purposes only.

