{ "id": "8c77e098-5fc2-41a0-816d-37bb517df94b", "created_at": "2026-04-06T00:17:51.857046Z", "updated_at": "2026-04-10T03:20:28.625674Z", "deleted_at": null, "sha1_hash": "a4c2832d766a1fd2e0f8b8fbeef8741871783df4", "title": "BlackCat Ransomware gang stole secret military data from industrial explosives manufacturer", "llm_title": "", "authors": "", "file_creation_date": "0001-01-01T00:00:00Z", "file_modification_date": "0001-01-01T00:00:00Z", "file_size": 1149661, "plain_text": "BlackCat Ransomware gang stole secret military data from\r\nindustrial explosives manufacturer\r\nBy Pierluigi Paganini\r\nPublished: 2023-01-27 · Archived: 2026-04-05 15:06:03 UTC\r\nThe BlackCat Ransomware group claims to have hacked SOLAR INDUSTRIES\r\nINDIA and to have stolen 2TB of “secret military data.”\r\nThe BlackCat Ransomware gang added SOLAR INDUSTRIES INDIA to the list of victims published on its Tor\r\nleak site. The company is a globally recognised industrial explosives manufacturer, it provides complete blasting\r\nsolutions, including packaged, bulk explosives and initiating systems to meet its customer needs across the globe.\r\nThe BlackCat Ransomware group claims to have breached the company infrastructure and to have stolen 2TB of\r\ndata, including secret military data related to weapons production.\r\n“Because of low security, more than 2TB of sensitive data related to weapons production was stolen from Solar\r\nIndustries India Limited.” reads the message published on the leak site. “The data leakage affected all products\r\nand classified documents of the company. The data includes full descriptions of engineering specifications,\r\ndrawings, audits of many weapons, among others:\r\nRocket Pinaka MK-1 ADM-1\r\nPropellant Pinaka MK-1 Enhanced\r\nProppelant Pinaka MK-2 Guided\r\nProppelant Akash Booster\r\nProppelant RTRS\r\nhttps://securityaffairs.com/141409/data-breach/blackcat-ransomware-solar-industries-india.html\r\nPage 1 of 3\n\nProppelant Astra MK-2\r\nProppelant PSOM-XL\r\nProppelant SkyRoot\r\nProppelant Star Booster\r\nProppelant HEMRL(PJ-10)\r\nProppelant BramhMos\r\nProppelant A1-P(P1 \u0026 P2)\r\nWarhead: Konkur, Invar, ATGM MK-2, MPBX Blocks\r\nMines: Vibhav, Vishal, Adrashy\r\nBomb: PGB 450, GP 250\r\nAnd much more.”\r\nStolen data includes:\r\nPersonal information about the company’s employees and customers\r\nArmament supply chains to various sources\r\nBlueprints and engineering documentation of the weapons\r\nInformation about who Solar Industries India is partnering with\r\nGovernment documents revealing details of cooperation\r\nRecords from all production cameras and offices\r\nBackups and databases\r\nDetails of warhead composition and engineering documentation of the callout elements of various products\r\nAudits and reports of flaws and vulnerabilities in the company’s products\r\nDocumentation of technical, power and other characteristics of the company’s products\r\nInternal product testing documentation with all documentation and approvals\r\nInformation and documents about our future developments\r\nContracts with the army and other customers\r\nBlackCat published images of the stolen documents and pictures taken from the company’s security cameras as\r\nproof of the hack.\r\nhttps://securityaffairs.com/141409/data-breach/blackcat-ransomware-solar-industries-india.html\r\nPage 2 of 3\n\nThe group invites anyone wishing to bid on all Solar Group data within 24 hours of the publication of its blog to\r\ncontact them in TOX.\r\nIt is interesting to notice that the gang claims have serious evidence of industrial spying in other countries\r\n(including friendly states).\r\nFollow me on Twitter: @securityaffairs and Facebook and Mastodon\r\n[adrotate banner=”9″] [adrotate banner=”12″]\r\nPierluigi Paganini\r\n(SecurityAffairs – hacking, BlackCat Ransomware)\r\n[adrotate banner=”5″]\r\n[adrotate banner=”13″]\r\nSource: https://securityaffairs.com/141409/data-breach/blackcat-ransomware-solar-industries-india.html\r\nhttps://securityaffairs.com/141409/data-breach/blackcat-ransomware-solar-industries-india.html\r\nPage 3 of 3", "extraction_quality": 1, "language": "EN", "sources": [ "ETDA" ], "references": [ "https://securityaffairs.com/141409/data-breach/blackcat-ransomware-solar-industries-india.html" ], "report_names": [ "blackcat-ransomware-solar-industries-india.html" ], "threat_actors": [], "ts_created_at": 1775434671, "ts_updated_at": 1775791228, "ts_creation_date": 0, "ts_modification_date": 0, "files": { "pdf": "https://archive.orkl.eu/a4c2832d766a1fd2e0f8b8fbeef8741871783df4.pdf", "text": "https://archive.orkl.eu/a4c2832d766a1fd2e0f8b8fbeef8741871783df4.txt", "img": "https://archive.orkl.eu/a4c2832d766a1fd2e0f8b8fbeef8741871783df4.jpg" } }