A public extortion post tied to SGS GmbH shows how ransomware crews turn alleged email exposure into leverage, even when the underlying compromise is not yet verified.