donutleaks attacks Detego GmbH

Incident Date:

August 24, 2022

World map



donutleaks attacks Detego GmbH


Detego GmbH




Graz, Austria

Graz, Austria

First Reported

August 24, 2022

Detego GmbH Targeted by DonutLeaks Ransomware Group

Detego GmbH, a leading provider of cloud-hosted RFID software for retailers, has been targeted by the ransomware group DonutLeaks. The attack was announced on the group's dark web leak site, and the victim's website is Detego operates in the Software sector and is known for its innovative RFID-based software platform that digitizes traditional stock management processes, ensuring optimal product availability for retailers across all channels.

Company Overview

Detego GmbH is a German company that specializes in providing cloud-hosted RFID software for retailers. Their platform digitizes stock management processes, increasing inventory accuracy and ensuring optimal product availability for retailers across all channels. The company's software covers the entire value chain, including real-time analytics, consumer engagement, and efficient processes for factories, warehouses, and stores.

Industry Standout

Detego is a standout in the retail industry due to its innovative RFID-based software platform. The platform is purpose-built with flexibility and user experience in mind, allowing retailers to maximize the benefits provided by RFID technology from the factory through to the store. Detego's software has been developed alongside customers and retail experts, and the company works with international brands, sports and fashion retailers, and department stores.


The specific vulnerabilities that led to Detego GmbH being targeted by the DonutLeaks ransomware group are not publicly disclosed. However, ransomware attacks often exploit weaknesses in software, hardware, or network security. In this case, the attack may have targeted vulnerabilities in Detego's cloud-hosted RFID software or its network infrastructure.

Response and Mitigation

Detego GmbH has not issued a public statement regarding the ransomware attack. It is unclear whether the company has taken any specific measures to mitigate the attack or recover from the data breach. The company's website remains operational, but it is possible that the attack has affected its services or operations.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.