FÉTIS Group & SECOM Engineering Listed by anubis Ransomware Group
Data breach at an engineering company. Financial records, project details, and personal information.
On June 11, 2026, the Anubis ransomware group added engineering firm SECOM Engineering and its parent FÉTIS Group to its public leak site, confirming that internal files had been exfiltrated during a ransomware attack. The exposed material includes financial records, project details, and personal information belonging to employees, contractors, and potentially their families.
Confirmed Facts from Public Reporting
Available reporting describes the incident as a classic ransomware double-extortion operation. The attackers claim to have stolen sensitive company documents and are threatening to publish them unless demands are met. Public reporting indicates the data set contains financial records, project documentation, and personal information. Exact victim counts remain unknown, and the precise volume of records has not been disclosed. The leak site posting appeared on June 11, 2026, with a countdown timer typical of Anubis operations.
Why This Matters for You and Your Family
When an engineering company’s internal systems are breached, the personal details of ordinary employees and their households often travel with the corporate files. Names, addresses, dates of birth, contact information, and sometimes family member details can appear in spreadsheets or HR folders. Once that information leaves the company’s control, it can be sold, traded, or used to target you directly. Personal information exposed in such attacks frequently becomes the starting point for identity theft, phishing campaigns, and harassment that reach beyond the workplace into your home.
The Doxxing and Identity-Chain Implications
Ransomware leaks rarely stop at one company. A single email address or phone number taken from SECOM’s systems can be cross-referenced with gaming accounts, social-media handles, and data-broker profiles. Attackers and opportunistic criminals then build an identity chain that links your professional life to your personal and family online presence. Credential leaks like this one regularly cascade into account takeovers on gaming platforms, where children’s usernames and shared family passwords become entry points for further harassment or extortion. The result is a widening circle of exposure that can affect every member of the household long after the original corporate breach is forgotten.
Anubis Ransomware Group’s Track Record
Public reporting attributes the Anubis ransomware group with emerging in late 2024. The gang has targeted organizations across manufacturing, engineering, and professional-services sectors. Notable prior victims include mid-sized industrial and technology firms whose data appeared on the same leak site. Their typical playbook begins with initial access through phishing or exploited remote desktop services, followed by exfiltration of internal files over several weeks. The group then deploys ransomware to encrypt systems and simultaneously pressures victims with threats to publish stolen data unless payment is made. Extortion demands are usually communicated via email and a dedicated negotiation portal, with public leak-site countdowns used to increase pressure.
What to do
- Run a DoxxScan to map every link between your handles, emails, phone numbers, and real-world identity so you can see exactly what chains back to the SECOM breach.
- Rotate any password you used at SECOM Engineering or FÉTIS Group anywhere else it is reused, then enable 2FA through an authenticator app rather than text messages.
- Enable continuous DoxxScan monitoring across 15.4B+ breach records and 100+ platforms so the next time your information surfaces you learn within hours instead of months.
- Cover the household with DoxxScan family coverage that extends protection to dependents and children’s gaming accounts that often chain back to the same addresses and emails.
- Let remediation specialists handle takedown requests across data brokers and exposed profiles while you focus on securing your own accounts.
The incident shows that corporate breaches now reach deep into ordinary households, making early detection and hands-on cleanup essential. DoxxScan by GalaxyWarden delivers continuous monitoring across 15.4 billion breach records and more than 100 platforms, AI-powered identity-chain mapping, and direct assistance from specialists who manage remediation for you and your family, including children’s gaming accounts vulnerable to credential-stuffing attacks that follow leaks like this one. Start your DoxxScan trial today to close the gaps before the next wave of abuse begins.
Related breaches
Ferrum AG Listed by anubis Ransomware Group
Data breach at one of the largest family-owned manufacturing businesses in Switzerland.…
COP® Vertriebs-GmbH Zentrale Listed by qilin Ransomware Group
N/A…
Chisholm Persson & Ball Listed by akira Ransomware Group
Chisholm, Persson & Ball, PC is a law firm located in Laconia, NH, specializing in various lega l se…
A breach leaks your credentials. Then hackers chain those credentials to your address, family, phone, and employer using public broker sites. We’re the only tool built around that chain.
⚠ Were you in this breach?
Free email scanner. We check your address against 15.4B+ leaked records in 15 seconds — then show you the $19 cleanup that removes you from the broker sites aggregating leaked data.
Check my email — free →