HackerFeeds
All ransomware incidents
yourcebulgaria.cc

Ransomware group crypto24 hits Yource Bulgaria & Greece

MEDIUM
·Business Services·BG·2025-12-30

Yource Bulgaria & Greece — a business services target operating in BG has been listed by the crypto24 ransomware group on 2025-12-30. The information below reflects what the threat actor has publicly claimed on their leak site; the details have not been independently verified.

Incident Report

Target OrganizationYource Bulgaria & Greece
Threat Group
crypto24
SummaryYource Bulgaria & Greece is a customer experience and contact center services provider supporting major international clients, handling large volumes of sensitive personal and business data across its operations in Bulgaria and Greece. We possess internal data belonging to Yource Bulgaria & Greece, including HR, customer, financial, and project-related information, as well as customer datasets associated with client engagements involving organizations such as Eneco Belgium, bofrost, essent.be, Media Compentence, Sodexo, and Spotzer.
Date of Breach2025-12-30
Discovery Date2026-01-21
RegionBG
Target Domainwww.yourcebulgaria.cc
Business SectorBusiness Services
Severity
MEDIUM

Claim by crypto24

Yource Bulgaria & Greece is a customer experience and contact center services provider supporting major international clients, handling large volumes of sensitive personal and business data across its operations in Bulgaria and Greece. We possess internal data belonging to Yource Bulgaria & Greece, including HR, customer, financial, and project-related information, as well as customer datasets associated with client engagements involving organizations such as Eneco Belgium, bofrost, essent.be, Media Compentence, Sodexo, and Spotzer.

Posted by the crypto24 threat actor on its public leak site. This is the group's own statement and has not been independently verified by HackerFeeds.

Disclaimer

HackerFeeds does not engage in the exfiltration, downloading, taking, hosting, viewing, reposting, or disclosure of any stolen information. All breach data reported here is sourced from publicly available threat intelligence feeds for awareness purposes only.