JAG Group Full Data Dump Claimed by Stormous
Stormous ransomware group claimed jaggroup.com and published what they described as a full data dump. The listing appeared on Ransomware.live on June 21, 2026. The data reportedly includes corporate emails and Active Directory logins.
- emails
- credentials
On June 21, 2026, the Stormous ransomware group published what it called a full data dump from JAG Group, exposing corporate emails and Active Directory logins from jaggroup.com. The listing appeared on the monitoring site Ransomware.live, and the attackers claimed the release included credentials that could give access to internal systems.
Public reporting indicates that the breach involves both email addresses tied to the company and login details from its Active Directory environment. Stormous posted the material after adding the victim to its leak site, following a pattern the group has used in previous incidents. The exact number of affected records remains unconfirmed, but the inclusion of Active Directory data raises the possibility that usernames and passwords used across the organization are now circulating.
Want the rest of this breakdown?
Sign up free to keep reading. Members get extended access, the weekly breach digest, and a complimentary Warden™ to see if their identity is exposed in the breaches we cover.
A breach leaks your credentials. Then hackers chain those credentials to your address, family, phone, and employer using public broker sites. We’re the only tool built around that chain.
⚠ Were you in this breach?
Free email scanner. We check your address against 15.4B+ leaked records in 15 seconds — then show you the $19 cleanup that removes you from the broker sites aggregating leaked data.
Check my email — free →