PAI A.I CyberSecurity Scoring
PAI
Company Information
Website:http://pellencus.com
Employees number:14
Number of followers:871
NAICS:333
Industry Type:Machinery Manufacturing
Homepage:pellencus.com
PAI Risk Score (AI oriented)
Between 600 and 649
PAIMachinery Manufacturing
Updated:
24/03/2026
24/03/2026
636/1000
Poor
Caa
PAI Global Score (TPRM)
xxxx
PAIMachinery Manufacturing
Score locked

PAIPoor
Current Score
636Caa (POOR)
01000
1 incidents
-107 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
644
JUNE 2026
643
MAY 2026
641
APRIL 2026
639
MARCH 2026
743
Ransomware
23 Mar 2026 • PAI
Pellenc: New Leak Site Tied to Active Initial Access Broker Emerges on Underground Forums
ALP-001: From Access Broker to Extortion - New Tor-Based Threat Emerges
636
CRITICAL-107
PEL1774340749
ALP-001: From Access Broker to Extortion New Tor-Based Threat Emerges
A newly identified Tor-based leak site, ALP-001, marks a shift in cybercriminal tactics, transitioning from selling network access to direct extortion. Operating as a "Data Leaks / Access Market," the group blends traditional initial access brokerage (IAB) methods with ransomware-style pressure tactics.
First Victim Named: Pellenc
ALP-001’s inaugural public target is Pellenc, a French manufacturer of battery-powered agricultural equipment based in Pertuis. The company, with reported revenue of $543 million, faces a 228 GB data leak threat, with a payment deadline set for early April 2026 a classic double-extortion tactic.
Attribution & Evolution
Threat researchers, including ReliaQuest, link ALP-001 to a long-standing IAB active on forums like Exploit and DarkForums, previously operating under aliases such as "Alpha Group" and "DGJT Group." Overlapping Tox and Session IDs, along with matching victim listings (including Pellenc), confirm the connection. In January 2026, the same broker advertised access to a French industrial firm matching Pellenc’s profile, reinforcing the pivot from access sales to extortion.
Tactics & Targets
ALP-001 specializes in compromising perimeter technologies, including:
- VPN/RDP gateways (Fortinet, Cisco, Citrix RDWeb, Palo Alto GlobalProtect)
- Exposed SSH servers
- Stolen credentials (via brute force, infostealer logs, or unpatched vulnerabilities)
Once inside, the group establishes persistence creating admin accounts or backdoor VPN profiles before monetizing access, now through direct extortion rather than resale.
Broader Implications
ALP-001’s emergence reflects a growing trend: IABs evolving into standalone extortion groups to maximize profits. While the group has a proven track record in access brokering, its ability to exfiltrate and curate large datasets remains unproven. The Pellenc case suggests an experiment with ransomware-style shaming, though public evidence of widespread data leaks is still limited.
For now, ALP-001 operates as a high-quality access broker with escalating extortion ambitions, signaling a potential new threat in the cybercrime ecosystem.
INCIDENT DETAILS -
TYPE
MOTIVATION
IMPACT
DATA BREACH
REFERENCES
FEBRUARY 2026
743
JANUARY 2026
743
DECEMBER 2025
743
NOVEMBER 2025
743
OCTOBER 2025
743
SEPTEMBER 2025
743
AUGUST 2025
743
Frequently Asked Questions
?
What is the current A.I Rankiteo Cyber Score for PAI ??
What was PAI's A.I Rankiteo Cyber Score in June 2026 ??
What was PAI's A.I Rankiteo Cyber Score in May 2026 ??
What was PAI's A.I Rankiteo Cyber Score in April 2026 ??
What was PAI's A.I Rankiteo Cyber Score in March 2026 ??
What was PAI's A.I Rankiteo Cyber Score in February 2026 ??
What was PAI's A.I Rankiteo Cyber Score in January 2026 ??
What was PAI's A.I Rankiteo Cyber Score in December 2025 ??
What was PAI's A.I Rankiteo Cyber Score in November 2025 ??
What was PAI's A.I Rankiteo Cyber Score in October 2025 ??
What was PAI's A.I Rankiteo Cyber Score in September 2025 ??
What was PAI's A.I Rankiteo Cyber Score in August 2025 ??
What is the average per-incident point impact on PAI's A.I Rankiteo Cyber Score over the past 12 months ??
Where can I access detailed records of all cyber incidents associated with PAI ??
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ??
Where can I view PAI's profile page on Rankiteo ??
How accurate is the A.I Rankiteo Risk Scoring methodology ?