netstar
devmanThis record tracks a ransomware attack claimed by the devman group against netstar. It collects the publicly disclosed attack details — sector, location and timeline — as published on the operator's leak site and indexed by Breach House.
Window Zero
EXPOSURE GAPWindow Zero is the time the breach stayed in the open before anyone said so — the gap between when the attack was first discovered on the operator's leak site (t1) and when it was publicly disclosed (t2). The wider this window, the longer victims, staff and customers were exposed with no warning.
Attack Summary
Netstar is an IT services and consulting company headquartered in Midrand, Gauteng, South Africa, specializing in vehicle tracking, fleet management, and recovery solutions for personal and business clients. The firm delivers real-time vehicle tracking, fuel monitoring, and AI-driven fleet analytics tailored to South African transport and logistics operations. With over 500 employees, Netstar operates as a registered security service provider offering tailored security and tracking technologies nationwide. The company was neutrally listed as a ransomware victim associated with the threat actor devman.
Leak Screenshots
SAMPLEProof-of-breach screenshots the operator posted from the stolen data. Previews are redacted and locked — the originals are available on HaveIBeenRansom.