Ransomware Group:  
Blackbasta



Sponsored by Hudson RockUse Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business


Sites | External Information | Tools | Yara Rules | TTPs | Vulnerabilities | Negotiations | Ransom Note(s) | Activity | Worldmap | Victims (506)

"Black Basta" is a new ransomware strain discovered during April 2022 - looks in dev since at least early February 2022 - and due to their ability to quickly amass new victims and the style of their negotiations, this is likely not a new operation but rather a rebrand of a previous top-tier ransomware gang that brought along their affiliates.


Sites

Title Available Last Visit FQDN Screenshot
Black Basta Blog 🟢 2024-12-05 21:26:45.295514 stniiomyjliimcgkvdszvgen3eaaoz55hreqqx6o77yvmpwt7gklffqd.onion 📸
Chat Black Basta 🔴 2023-09-17 12:10:42.295358 aazsbsgya565vlu2c6bzy6yfiebkcbtvvcytvolt33s77xypi7nypxyd.onion N/A
Chat Black Basta 🟢 2024-12-05 21:27:01.509488 bastad5huzwkepdixedg2gekg7jk22ato24zyllp6lnjx7wdtyctgvyd.onion 📸

External information

Tools used

Discovery RMM Tools Defense Evasion Credential Theft OffSec Networking LOLBAS Exfiltration
AdFind AnyDesk Backstab (Process Explorer driver) Mimikatz Brute Ratel C4 BITSAdmin Qaz[.]im
Bloodhound Atera Cobalt Strike PsExec RClone
PowerView NetSupport Metasploit
PSNmap ScreenConnect PowerSploit
SoftPerfect NetScan Splashtop
Supremo

This information is provided by Ransomware-Tool-Matrix

Yara Rules

TTPs

Vulnerabilities

 Negotiation chats

Name # Msg Initial Ransom Negotiated Ransom Paid
20221011 50 $500,000 $300,000
20221229 50 $700,000 $500,000
20230501 50 N/A $150,000
20230410 57 $400,000 $150,000

This information is provided by Valéry Marchive & Julien Mousqueton

Ransom Note(s)

Activity over time

Worldmap

506 Victims

CA flag

hamptonsecurities.com 

Company logo
Ransomware Group:

Discovery Date: 2024-12-04 13:13

Founded in 1996, Hampton continues to be one of Canada’s leading full-service boutique investment platforms, delivering both wealth management and capital markets services. Our team of advisors, bankers, insurance professionals, and associates prides itself on providing bespoke investment solutions and tailored service to both our retail and institutional clients. Coupled with our all encompassing, individualized, insurance and estate planning solutions, you can rest assured knowing the full scope of your finances, business, legacy, and succession are well positioned for whatever the future may hold.SITE: www.hamptonsecurities.com Address : 141 Adelaide Street W., Suite 1800 Toronto, Ontario M5H 3L5 CanadaTEL#: (416) 862-7800ALL DATA SIZE: ≈500gb 1. Employees, customers personal documents 2. Financial data 3. NDA’s, Confidential data & etc…

Victim:   |  Group: 
GB flag

g-s.co.uk 

Company logo
Ransomware Group:

Discovery Date: 2024-12-04 13:10

Graham + Sibbald is one of the UK’s leading property consultancy services. Our success is built upon how we deliver our service; it is a unique combination of being both professional and personable. Graham + Sibbald has a long-standing history of supporting and delivering community benefits. This ranges from offering work placements/shadowing experiences for secondary school children across our office network, working in partnership with local schools by surveyor participation and attendance at career fairs/ STEM practical workshops to supporting Modern and Graduate Apprentices through our dedicated Career Programmes.SITE: www.g-s.co.uk Address : 3 Charlotte Street, Perth Perthshire, PH1 5LW United KingdomTEL#: +44 1738 445733ALL DATA SIZE: ≈1.5tb 1. Personal documents Employees 2. Personal documents Clients 3. Financial data 4. Users data 5. Another Corporate data & etc…

Victim:   |  Group: 
US flag

cafezupas.com 

Company logo
Ransomware Group:

Discovery Date: 2024-12-04 13:07

At Cafe Zupas, we believe that real, whole food should always come first. With daily premium produce deliveries and 18 hours of combined prep, our restaurant teams make everything from scratch each day, including our salad dressings, sandwich spreads, and soups. We’re driven by our mission of “Nourish The Good Life!” It guides us to push the bounds and provide something that our guests love and feel great eating. After all, eating right should be delicious. With protein packed Good Life Bowls, refreshing salads, hearty soups and flavorful sandwiches — there’s something for everyone at Cafe Zupas!SITE: www.cafezupas.com Address : 460 W Universal Circle Sandy, Utah 84070 United StatesTEL#: (801) 216-8148ALL DATA SIZE: ≈800gb 1. Employees personal documents 2. Financial data 3. Confidential data 4. Accounting & etc…

Victim:   |  Group: 
CA flag

westbankcorp.com 

Company logo
Ransomware Group:

Discovery Date: 2024-12-04 13:03

Westbank Corp is a leading mixed-use real estate development company based in North America. Westbank Corp, founded in 1992, is dedicated to city building and the creation of beauty through their real estate developments. They specialize in residential and mixed-use projects, with a focus on sustainable urban development.SITE: www.westbankcorp.com Address : Suite 601 - 1067 West Cordova St. Vancouver, BC V6C 1C7 CanadaTEL#: 604-685-8986ALL DATA SIZE: ≈500gb 1. Company data: Financial, HR, Payroll, Tax… 2. Users personal folders and documents 3. Customers data 4. Contracts, NDA’s, Confidential data 5. Projects & etc…

Victim:   |  Group: 
GB flag

btci.com 

Company logo
Ransomware Group:

Discovery Date: 2024-12-04 13:00

Sector: Technology
BT Group plc (formerly British Telecommunications plc, abbreviated to British Telecom) is one of Europe’s leading providers of telecommunications services.SITE: www.btci.com | www.btconferencing.comALL DATA SIZE: ≈500gb 1. Finacial data 2. Organisation data 3. Users data and personal docs 4. NDA’s, Confidential data & etc…

Victim:   |  Group: 
DE flag

beko-technologies.com 

Company logo
Ransomware Group:

Discovery Date: 2024-12-04 12:57

BEKO TECHNOLOGIES GMBH. For more than four decades, we have represented worldwide tried and tested compressed air and compressed gas technologies. Our products, systems and solutions ensure the required quality that our customers demand for their production processes – safely and energy-efficient. For quality made in Germany. And for values made by BEKO TECHNOLOGIES.SITE: www.beko-technologies.com Address : Im Taubental 7 D-41468 Neuss GermanyTEL#: +49 2131-988-0ALL DATA SIZE: ≈700gb 1. Company data 2. Users folders and personal documents 3. Customers data 4. Confidential data 5. R&D(Fue) 6. Drawings, Graphics… & etc…

Victim:   |  Group: 
IT flag

snatt.it 

Company logo
Ransomware Group:

Discovery Date: 2024-12-04 12:54

The Snatt Omlog Companies are global specialists in logistics and technology, primarily serving the luxury, fashion, and lifestyle sectors. They operate under the Snatt brand in Italy and as Omlog in other international markets. The company focuses on providing customized supply chain solutions and operational support for major brands and retailers worldwide.SITE: www.sogroupglobal.com | www.snatt.itSnatt Logistica SpA P. IVA: 02060420359 Sede Legale: Campegine (RE) Via Kennedy n. 12/B, CAP 42040Omlog SpA P. IVA: 10925580150 Sede Legale: Settala (MI) Via Giuseppe Di Vittorio n. 21, CAP 20049ALL DATA SIZE: ≈1.5tb 1. Financial data 2. Personal data 3. Confidential data 4. NDA’s & etc…

Victim:   |  Group: 
US flag

medicacorp.com 

Company logo
Ransomware Group:

Discovery Date: 2024-12-04 12:53

Sector: Healthcare
Medica Corporation is a manufacturer specializing in diagnostic blood testing analyzers. The company focuses on creating simple-to-use and highly reliable devices for in vitro diagnostic laboratories, particularly those that are small to medium-sized. Their product range includes clinical chemistry analyzers, blood gas analyzers, and electrolyte analyzers.SITE: www.medicacorp.com Address : 5 Oak Park Drive Bedford, MA 01730 United StatesTEL#: 1 800 777 5983ALL DATA SIZE: ≈1.5tb 1. Departments data: Corporate, Financial, Accounting, Graphics… etc 2. Users data, Personal employees documents 3. Confidential data, NDA’s 4. R&D, Engeneering, Projects & etc…

Victim:   |  Group: 
GB flag

lornestewartgroup.com 

Company logo
Ransomware Group:

Discovery Date: 2024-12-04 12:50

Sector: Construction
Lorne Stewart Group is a UK-based engineering and construction company that specializes in mechanical and electrical engineering, integrated facilities management, and off-site modular design and construction. The company has a long-standing heritage in the industry, providing services across various sectors including public and private projects.SITE: www.lornestewartgroup.com Address : Aladdin Building, Western Avenue Greenford, Middlesex UB6 8UY United KingdomTEL#: 020 8732 2000ALL DATA SIZE: ≈1tb 1. Financial data 2. Personal employees data, docs 3. Confidential data, NDA’s, Clients data 4. Engeneering, Projects & etc…

Victim:   |  Group: 
DE flag

vossko.de 

Company logo
Ransomware Group:

Discovery Date: 2024-12-04 12:47

Vossko GmbH & Co. KG is a German company specializing in the production of frozen and chilled convenience food products, primarily focusing on poultry, beef, and pork, as well as vegetarian and vegan options. Founded in 1982 by Bernhard and Maria Vosskötter, the company is headquartered in Ostbevern, North Rhine-Westphalia, Germany, and operates a second facility in Lages, Santa Catarina, Brazil.SITE: www.vossko.de Address : Vossko-Allee 1 48346 Ostbevern DeutschlandALL DATA SIZE: ≈800gb 1. Financial data 2. Personal employees data 3. Projects 4. Personal documents & etc…

Victim:   |  Group: 
US flag

mcleanmortgage.com 

Company logo
Ransomware Group:

Discovery Date: 2024-11-28 11:58

McLean Mortgage Corporation is a mortgage brokerage based in Fairfax, Virginia, specializing in various loan products to assist clients in achieving home ownership. Established in 2008, the company has been operational for over 16 years and offers services across multiple locations.SITE: www.mcleanmortgage.com Address : 11325 Random Hills Road Suite 400 Fairfax, VA 22030 United StatesTEL#: (571) 405-2527ALL DATA SIZE: ≈1tb 1. Accounting 2. Financial data, Loans, Payrolls, Tax 3. Human Resources data 4. Confidential data 5. Customers, Clients personal docs 6. Personal documents users and employees & etc…

Victim:   |  Group: 
US flag

suit-kote.com 

Company logo
Ransomware Group:

Discovery Date: 2024-11-28 11:54
Estimated Attack Date: 2024-10-16

Sector: Construction
Suit-Kote Corporation is a privately-owned company that manufactures asphalt products, provides road construction and maintenance services, and engineers asphalt applications.SITE: www.suit-kote.com Address : 1911 Lorings Crossing Road, Cortland, NY 13045 United StatesTEL#: (607) 753-1100ALL DATA SIZE: ≈1.5tb 1. Personal documents, employees data 2. Financial data, Accounting 3. Users folders 4. Tax data, forms 5. confidential agrements, NDAs data & etc…

Victim:   |  Group: 
US flag

andyfrain.com 

Company logo
Ransomware Group:

Discovery Date: 2024-11-28 11:51
Estimated Attack Date: 2024-10-23

Andy Frain Services is a professional services company with a rich history dating back to 1924. Founded by Andrew T. Frain, the company initially focused on solving gate crashing problems at Chicago Stadium hockey games. Andy Frain Services began with a small group of professional ushers who created an atmosphere of authority at sporting events. The company’s success at Chicago Stadium led to an opportunity at Wrigley Field, where William Wrigley Jr. was so impressed that he invested in outfitting Frain’s men with their iconic blue and gold uniforms.SITE: www.isaitaly.com Address : 761 Shoreline Drive Aurora, IL 60504 United StatesTEL#: 630-820-3820ALL DATA SIZE: ≈750gb 1. Accounting 2. Human Resources 3. Legal 4. Contracts 5. Payroll & etc…

Victim:   |  Group: 
DE flag

rembe.de 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 14:20
Estimated Attack Date: 2024-11-04

REMBE GmbH Safety + Control is a German company specializing in explosion safety and pressure relief systems. Founded in 1973 and headquartered in Brilon, Germany, REMBE focuses on providing safety solutions across various industries, including food, chemical, pharmaceutical, and wood sectors. The company employs around 250 to 350 people globally and operates several subsidiaries worldwide to support its customers effectively.SITE: www.rembe.de Address : Gallbergweg 21, 59929 Brilon, GermanyTEL#: +49 2961 7405-0ALL DATA SIZE: ≈1tb 1. Financial data 2. Personal employees data 3. Confidential data 4. R&D, Engeneering & etc…

Victim:   |  Group: 
US flag

gfemlaw.com 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 12:10
Estimated Attack Date: 2024-10-31

Gleason, Flynn, Emig & McAfee, Chartered was founded in 1983 as Gleason & Flynn, when the firm’s founders, Jim Gleason and Mike Flynn decided to create a firm of skilled and aggressive trial lawyers. Gerard Emig and Larry McAfee became shareholders in 1991 and 2006, respectively. Over the years the firm has increased in size yet its mission has remained constant: The attorneys at GFEM are dedicated to using their experience and expertise to best service the legal needs of their clients.SITE: www.gfemlaw.com Address : 11 North Washington Street Suite 400, Rockville MD 20850-4278, USTEL#: 301.294.2110ALL DATA SIZE: ≈550gb 1. Corporate data 2. Users personal folders and documents 3. Customers data and personal docs 4. Confidential data & etc…

Victim:   |  Group: 
US flag

instinctpetfood.com 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 12:07

Instinct Pet Food is a family-owned pet food company that makes natural, minimally processed food for dogs and cats. Their products include: frozen raw meals, freeze-dried raw meals, kibble, raw toppers, and wet food. Instinct Pet Food’s mission is to improve the lives of pets by providing them with real, natural food. They believe that raw nutrition is unmatched and that food has the power to change a pet’s life.SITE: www.naturesvariety.com | www.instinctpetfood.com Address : 55 West Port Plaza Drive, Suite 200 St. Louis, MO 63146 United StatesTEL#: (314) 590-5700ALL DATA SIZE: ≈1.5tb 1. Human Resources 2. Corporate data(Financial, Payroll, Tax, Accounting… 3. Users Personal folders and documents 4. R&D & etc…

Victim:   |  Group: 
US flag

eatonmetal.com 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 12:04
Estimated Attack Date: 2024-10-17

Eaton Metal Products Company utilizes its (3) large production facilities in Denver, Salt Lake City & Pocatello, Idaho to fabricate a staggering number of vessel & tank types & sizes, all for a who’s who list of customers around the US & the world.SITE: www.eatonmetal.com Address : 4800 York St. Denver, CO 80216 United StatesTEL#: 303-296-4800ALL DATA SIZE: ≈650gb 1. Accounting 2. Home employees personal folders and docs 3. Payroll and dinancial data 4. Tax data and forms 5. Audits 6. NDA’s, Confidential data & etc…

Victim:   |  Group: 
US flag

continentalserves.com 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 12:01
Estimated Attack Date: 2024-10-18

CULTURE-BUILDING EXPERTS Founded in Detroit, Michigan in 1989, Continental has grown from an office coffee and vending provider to the Midwest leader in workplace food and beverage offerings. Spanning across Michigan, Indiana, Ohio and into Pennsylvania and New York through the acquisition of Cuyahoga Franklin Group, Continental serves clients of all sizes, from international industry leaders to small businesses, including manufacturing, technology, healthcare, education, commerce and more. With a cutting-edge technology suite, best-in-class logistics and infrastructure, and a commitment to personal client attention, we consistently rank as one of the top contract dining and refreshment providers in the nation. From 24/7 micro-markets to full-service cafés and food delivery, our customized programs provide the resources of a global company with the responsiveness only a local partner can offer.SITE: www.continentalserves.com Address : 700 Stephenson Hwy, Troy, MI 48083 United StatesTEL#: 248.414.1700ALL DATA SIZE: ≈900gb 1. Users, employees personal folders and docs 2. Financial data 3. Personal documents employees 4. Tax data 5. NDA’s, Confidential data 6. Human Resources & etc…

Victim:   |  Group: 
US flag

wachter.com 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 11:58
Estimated Attack Date: 2024-10-16

Sector: Construction
Wachter is a technology integration company that designs, installs, and maintains technology for businesses across the United States.SITE: www.continentalserves.com Address : 16001 West 99th Street Lenexa, KS 66219 United StatesTEL#: 913-541-2500ALL DATA SIZE: ≈200gb 1. Employees personal folders and docs 2. Financial data 3. Confidential 4. Human Resources & etc…

Victim:   |  Group: 
US flag

jonti-craft.com 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 11:55

Jonti-Craft is a family-owned company that manufactures children’s furniture for a variety of settings, including classrooms, daycares, and waiting rooms.SITE: www.jonti-craft.com Address : 171 State Highway 68 PO Box 30, Wabasso MN 56293 USATEL#: (507) 342-5169ALL DATA SIZE: ≈700gb 1. Home users data 2. Financial data, Payroll 3. Personal 4. Human Resources 5. Engineering 6. Depts & etc…

Victim:   |  Group: 
IT flag

isaitaly.com 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 11:52
Estimated Attack Date: 2024-10-22

Since 1963 ISA produces in its region and, from there, it provides refrigerated showcases and furniture for public places worldwide. ISA works in the market through three brands: ISA, COF, TASSELLI and HIZONE with a sales volume beyond 120 million of euro by exporting, in 107 countries, quality products with a high rate of technology and innovation, also in terms of sustainability by using natural refrigerants. ISA nowadays is one of the most important players of the world in the field of interior design for public places, showcases and refrigerated cabinets for ice cream and pastry and professional furniture. Beyond numerous and prestigious clients, who make a daily use of ISA’s equipment, the company has been collaborating for years with important international brands, which they are: Ahold, Auchan, Autogrill, Billa, Bindi, Coldstone Creamery, Coca Cola, Conad, Coop, Cremonini, Brioche Doree, Haagen Dazs, Nestlé, Sammontana, Sturbucks and Unilever.SITE: www.isaitaly.com Address : Via Madonna di Campagna, 123 06083 Bastia Umbra – ItalyTEL#: +39 075 80171ALL DATA SIZE: ≈1.5tb 1. Employees personal documents 2. Financial data 3. Projects, Drawings & etc…

Victim:   |  Group: 
US flag

rockportmortgage.com 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 11:51

Rockport Mortgage is a leading national provider of FHA-insured financing programs and offers unique customized solutions for multifamily affordable and market-rate housing as well as healthcare and assisted living facilities.SITE: www.rockportmortgage.com Address : 17 Rogers Street Gloucester, MA 01930 United StatesTEL#: (978) 283-9208ALL DATA SIZE: ≈1.1tb 1. Employees personal documents 2. Financial data, Accounting, Payroll 3. Users personal folders 4. Customers data 5. Tax, confidential data & etc…

Victim:   |  Group: 
US flag

kmcglobal.com 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 11:48
Estimated Attack Date: 2024-10-14

KMC Global is a group of wholly-owned, autonomous companies which design and manufacture equipment that enhances how industry processes material. Serving customers in a broad spectrum of manufacturing sectors such as; food, chemical, automotive, mineral processing, industrial manufacturing, agricultural, foundry, metals recycling, and energy, each company helps these processing and manufacturing-based sectors optimize production and reduce waste. The equipment manufactured collectively by the group include; conveyors, material screeners, metal crushers, bulk bag loading and unloading equipment, coolant filtration equipment, and wastewater treatment equipment.SITE: www.kmcglobal.com Address : 5944 E N Ave Kalamazoo, MI 49048 United StatesTEL#: +1 (269) 382-8200ALL DATA SIZE: ≈1,4tb 1. Accounting 2. Payroll 3. Finance 4. Engineering 5. Marketing 6. Users personal folders, docs 7. Confidential docs, NDAs & etc…

Victim:   |  Group: 
DE flag

rauch.de 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 11:45
Estimated Attack Date: 2024-10-23

RAUCH Streuer – Kompetenz in Entwicklung & Herstellung Seit mehr als 100 Jahren sind wir als Familienbetrieb nunmehr in fünfter Generation auf die Entwicklung und Herstellung von innovativen Düngerstreuern und funktionalen Lösungen für den Winterdienst spezialisiert. RAUCH Streuer setzen dabei national und international neue Standards an Effizienz und wirtschaftlichen Erfolg in der Landwirtschaft. Modernste und zukunftsweisende Technologien, eine immense Leistungsstärke, höchste Präzision in der Streugutausbringung, einfache Bedienbarkeit und maximale Sicherheit machen RAUCH Streuer zum Garanten im täglichen Einsatz. So sind wir heute weltweiter Marktführer im Bereich der Dünge- und Streutechnik. Für Sie gehen wir immer die Extrameile und stellen höchste Ansprüche an die Qualität unserer RAUCH Streuer. In der RAUCH Landmaschinenfabrik suchen wir immer wieder nach neuen Möglichkeiten und Lösungen, wie wir Sie noch besser dabei unterstützen, Ihre Herausforderungen auf dem Feld oder der Straße zu meistern. Wir bieten Ihnen eine große Auswahl an unterschiedlichen Leistungsklassen der Streuer, die wir kompromisslos in der RAUCH Manufaktur „Made in Germany“ produzieren.SITE: www.rauch.de Address : Victoria Boulevard E 200 77836 Rheinmünster • GermanyTEL#: +49 (0) 7229 8580-0ALL DATA SIZE: ≈2tb 1. Employees personal documents 2. Financial data 3. Confidential data 4. Projects, Drawings, RnD(FuE) 5. Clients & etc…

Victim:   |  Group: 
US flag

daserv.com 

Company logo
Ransomware Group:

Discovery Date: 2024-10-29 19:17
Estimated Attack Date: 2024-10-10

Sector: Technology
Distribution Alternatives, Inc. (DA) is a third-party logistics (3PL) company that offers warehousing, fulfillment, and distribution services: DA offers a range of services, including warehousing, pick and pack fulfillment, LTL shipping, EDI processing, and more. They also provide direct-to-consumer fulfillment for e-commerce and catalog orders.SITE: www.daserv.com Address : 6870 21st Avenue South Lino Lakes, Minnesota 55038 United StitesTEL#: 800-346-3245ALL DATA SIZE: ≈450gb 1. Financial data, Accounting 2. Employees, Customers forms with personal info 3. Human Resources 4. Users folders with personal docs 5. Tax, 401k data forms, confidential agrements, NDAs… & etc…

Victim:   |  Group: 
US flag

celo.com 

Company logo
Ransomware Group:

Discovery Date: 2024-10-29 19:14
Estimated Attack Date: 2024-10-10

Sector: Technology
CELO is a brand dedicated to the design and manufacture of high-precision fixing and fastening solutions for the fields of industry and construction.SITE: www.celo.com Address : 2929 32nd St SE, Grand Rapids Michigan, 49512 United StatesALL DATA SIZE: ≈250gb 1. Human Resources 2. Finance data 3. Accounting 4. Payroll 5. 401k, Tax data 6. Users: Employees personal folders and docs 7. Clients & etc…

Victim:   |  Group: 
US flag

rosenlegal.com 

Company logo
Ransomware Group:

Discovery Date: 2024-10-29 17:25
Estimated Attack Date: 2024-10-09

The Rosen Law Firm, P.A. is dedicated to recovering damages for shareholders victimized by securities fraud and directors’ and officers’ breaches of fiduciary duty. Our attorneys have a wealth of knowledge and experience handling complex financial litigation and winning significant victories and settlements for our clients. By focusing exclusively on securities class actions and shareholder litigation, we have risen to the forefront of plaintiffs’ firms and have recovered damages totaling hundreds of millions of dollars for our clients.SITE: www.rosenlegal.com Address : 275 Madison Avenue, 40th Floor New York, NY 10016 United StatesTEL#: 212.686.1060ALL DATA SIZE: ≈500gb+ 1. Clients personal docs and forms 2. Employees personal folders & documents 3. Financial, Accountings, Payroll, Tax data 4. Customers data 5. Confidential data, NDAs data & more etc…

Victim:   |  Group: 
US flag

weberpackaging.com 

Company logo
Ransomware Group:

Discovery Date: 2024-10-29 17:22
Estimated Attack Date: 2024-10-08

Weber Packaging Solutions is a leading innovator in the design, engineering, manufacture and supply of high-performance pressure-sensitive labels, labeling systems and ink jet systems.SITE: www.weberpackaging.com Address : 711 W. Algonquin Rd. Arlington Heights, IL 60005 United StatesTEL#: 1.800.843.4242ALL DATA SIZE: ≈900gb 1. Personal documents 2. Financial data, Accounting, Payroll 3. Human Resources 4. Budgets 5. Confidential data, NDA & etc…

Victim:   |  Group: 
US flag

tuggleduggins.com 

Company logo
Ransomware Group:

Discovery Date: 2024-10-24 17:07
Estimated Attack Date: 2024-10-01

In choosing a law firm for your business and personal needs, a good starting point is reputation. Tuggle Duggins has over a 42 year heritage of serving businesses and owners in virtually all aspects of business law, taxation, dispute resolution and litigation, bankruptcy, real estate, commercial transactions, and wealth management.SITE: www.tuggleduggins.com Address : 400 Bellemeade Street, Suite 800 Greensboro, NC 27401 Unated StatesTEL#: 336.378.1431ALL DATA SIZE: ≈300gb 1. Corporate data, Financial data… 2. NDA, Confidential data, Confidential Agreements, etc… 3. Human Resources, Payroll, Tax 4. Personal employees documents and info 5. Clients, customers data & etc…

Victim:   |  Group: 
US flag

temple-inc.com 

Company logo
Ransomware Group:

Discovery Date: 2024-10-21 22:50
Estimated Attack Date: 2024-09-28

Temple, Inc., located in Decatur, Alabama, is a family-owned company that’s been serving the South since 1954. Throughout the years, the people of Temple, Inc. have worked to develop enduring relationships with city, county, and state agencies, utility departments, engineering firms, electrical services contractors, and vendor partners. A commitment to Integrity, outstanding Service, and Relationships endure as the guiding principles of our business.SITE: www.temple-inc.com Address : 305 Bank Street Decatur, AL 35601 Unated StatesALL DATA SIZE: ≈200gb 1. Home emplyees folder 2. Temple Corporate data 3. Projects, drawings 4. Accounting, Financial data 5. Customer contracts & etc…

Victim:   |  Group: 
US flag

milleredge.com 

Company logo
Ransomware Group:

Discovery Date: 2024-10-21 22:47
Estimated Attack Date: 2024-10-03

Miller Edge is the leading North American manufacturer of UL 325 recognized safety accessories for motorized doors and automated vehicular gate systems. The product line includes touch sensitive and non-contact devices such as sensing edges and photo eyes, in addition to a complete line of accessories designed to ease installation and enhance the level of safety for automatic door and gate systems. Our Engineering staff is ready to assist you with any special design applications. We invite you to check out our product lines and call our friendly Customer Service staff with any questions you may have.SITE: www.milleredge.com Address : 300 N Jennersville Rd, West Grove, Pennsylvania 19390, United StatesALL DATA SIZE: ≈600gb 1. Emplyees personal data 2. Corporate data: Human Resources, Financial, Tax, Payroll data & etc… 3. Accounting data 4. Engineering data 5. Customer, Contracts, Confidential data & etc…

Victim:   |  Group: 
US flag

gkcorp.com 

Company logo
Ransomware Group:

Discovery Date: 2024-10-21 22:44
Estimated Attack Date: 2024-10-08

Sector: Not Found
The Kaiser Enterprise is made up of multiple divisions & subsidiaries. From a turn-key paint shop, to a battery manufacturing facility, to a turn-key hyperscale data center, to a wastewater treatment facility: the Kaiser Enterprise has a wide range of capabilities. Importantly, this team has the in-house resources to design, engineer, fabricate and install.SITE: www.gkcorp.com Address : 5555 New King Drive Troy, MI 48098 United StatesTEL#: 313.368.3100ALL DATA SIZE: ≈1.5tb+ 1. Corporate data 2. Accounting, Finance 3. Budget 4. Emoployees personal docs 5. Human Resources 6. Projects 7. Confidential data, NDAs 8. Development data & etc…

Victim:   |  Group: 
US flag

ssbwc.com 

Company logo
Ransomware Group:

Discovery Date: 2024-10-21 22:41
Estimated Attack Date: 2024-10-02

Silver Springs Bottled Water Company was founded in 1986 and the Richmond Family purchased the company in 1991. Driven by the market’s demand for water as a beverage and with the customer as the controlling officer, Silver Springs Bottled Water Company has quickly become Florida’s largest privately held bottled water company.SITE: www.ssbwc.com Address : P.O. Box 926 Silver Springs, Florida 34489 United StatesTEL#: (877)-556-1854ALL DATA SIZE: ≈600gb+ 1. Emplyees personal folders and documents 2. Corporate data: Global, HR, Personal and etc… 3. Projects 4. Financial data, Accounting 5. Customer contracts, Confidential data & etc…

Victim:   |  Group: 
AT flag

lewa.com 

Company logo
Ransomware Group:

Discovery Date: 2024-10-21 22:38
Estimated Attack Date: 2024-10-03

For more than seven decades LEWA has set the technical standards as a manufacturer of pumps and systems for fluid metering. Our focus lies on metering and process pumps, metering systems and complete systems for process engineering processes. Pumps from LEWA are used today in a wide range of industries, from the very sensitive food industry to petrochemistry and refinery. We plan and produce efficient and individualized system solutions for nearly all metering requirements, conveyance, mixing, or odorizing tasks.SITE: www.lewa.com Address : LEWA Austria GmbH Diefenbachgasse 35/3/9 1150 ViennaTEL#: +43 1 8773 040-0ALL DATA SIZE: ≈400gb+ 1. Emplyees personal docs 2. Corporate data: Financial, Personal, HR, Acctg 3. Projects, DWG 4. Customer contracts, Confidential data 5. Engineering data, R&D(Fue) & etc…

Victim:   |  Group: 
GB flag

gfm-uk.com 

Company logo
Ransomware Group:

Discovery Date: 2024-10-14 16:37
Estimated Attack Date: 2024-10-01

At GFM we pride ourselves on service, innovation and the ongoing relationships we have with our client. We are not simply a facilities management company. By building lasting relationships with over 100 clients GFM have become one of the countries leading FM companies. We offer a full spectrum of FM services, including maintenance, cleaning, catering, security, horticulture, environment and energy. Which can be delivered as a single line or a tailored bundle, but what GFM do best is offer fully integrated bespoke solutions.SITE: www.gfm-uk.com Address : 4 Greengate, Cardale Park, Harrogate, HG3 1GY United BritainALL DATA SIZE: ≈300gb 1. Corporate data 2. NDA, Confidential data 3. Human Resources 4. Personal employees documents and info 5. Clients, customers data & etc…

Victim:   |  Group: 
US flag

caseparts.com 

Company logo
Ransomware Group:

Discovery Date: 2024-10-14 16:34
Estimated Attack Date: 2024-09-27

Case Parts Company are a 45 year-old commercial refrigeration parts distributor and light manufacturer. Our staff of 66 employees service three fully independent branch operations in St. Louis, Seattle and world headquarters in Los Angeles. Our customer base is national in scope. We add about 100 new customers per month.SITE: www.caseparts.com Address : 877 Monterey Pass Road Monterey Park, CA 91754, US

Victim:   |  Group: 
US flag

northernsafety.com 

Company logo
Ransomware Group:

Discovery Date: 2024-09-16 11:02

Northern Safety Co., Inc. operates as a personal safety equipment distributor company. The Company offers disposable respirators, earplugs, first aid kits, gloves, hard hats, safety glasses, safety supplies, traffic work boots, and fall harnesses. Northern Safety serves customers in the United States.SITE: www.northernsafety.com Address : 761 S. Danny Thomas Blvd. Memphis, TN 38126 USAALL DATA SIZE: ≈750gb 1. Corporate data 2. Finance data 3. HR 4. Users, Employees personal, confidential data & etc…

Victim:   |  Group: 
CA flag

thompsoncreek.com 

Company logo
Ransomware Group:

Discovery Date: 2024-09-16 11:01

Sector: Construction
Thompson Creek® Window Company is the Mid-Atlantic region’s premier home improvement replacement products company. We have been customizing and manufacturing replacement windows, doors, gutters, siding and roofing in the Mid-Atlantic region since 1980.SITE: www.thompsoncreek.com Address : 4200 Parliament Place Suite 600 Lanham, MD 20706 USAALL DATA SIZE: ≈750gb 1. Corporate data 2. Financial data, Accounting… 3. Human Resources, Hire data… 4. Payroll, personal Tax forms, Agreements… 5. Personal docs employees, clients… & etc…

Victim:   |  Group: 
 flag

memc.com 

Company logo
Ransomware Group:

Discovery Date: 2024-07-22 14:54
Estimated Attack Date: 2024-06-11

Sector: Energy
MEMC is a global leader in producing advanced semiconductor materials for the electronics industry with leading-edge design and manufacturing.SITE: www.memc.com ALL DATA SIZE: ≈1tb 1. Corporate data, Financial data… 2. NDA, Confidential data 3. Human Resources, Hire data 4. R&D, Engineering data 5. Personal employees documents and info 6. Clients data & etc…

Victim:   |  Group: 
CA flag

posiplus.com 

Company logo
Ransomware Group:

Discovery Date: 2024-07-15 17:36

Sector: Technology
Since 1981, Posi+ has been manufacturing aerial devices, stand apart to meet your specific needs. Over the years, the range of products expanded. Motivated by the same concern for performance, quality and safety, Posi+ also offers digger derricks, cable handlers and cable placers for telecoms.SITE: www.posiplus.com Address : 100-489 PIERRE-ROUX E, VICTORIAVILLE QUEBEC, CANADA G6T 1S9Tel#: 1 800 758-5717ALL DATA SIZE: ≈350gb+ 1. Company data 2. Confidential & employees data 3. Financial data & etc…

Victim:   |  Group: 
US flag

hpecds.com 

Company logo
Ransomware Group:

Discovery Date: 2024-07-15 17:35

Sector: Technology
CDS, a Hewlett Packard Enterprise company CDS is a wholly owned subsidiary of Hewlett Packard Enterprise and although an integral part of delivery operations in EMEA, is a separate legal entity providing true multi-vendor service capability for Hewlett Packard Enterprise customers. The Hewlett Packard Enterprise service offerings are contained in a single portfolio of branded services, which are delivered by both CDS and Hewlett Packard Enterprise service teams. CDS specialises in on-site delivery for multi-vendor products and technical services. CDS was formed after the acquisition of Synstar plc which had over 40 years’ experience of delivering multi-vendor services across Europe. Our company has a long tradition of delivering highly customised services and we pride ourselves on our commitment to customer satisfaction. This broad range of skills coupled with an agile workforce creates flexibility in service solutions which can be tailored to individual customers needs. CDS embraces all of Hewlett Packard Enterprise’s values and commitment to employees and customers alike.SITE: www.hpecds.com Address : Berkshire, GB - Winnersh Triangle 210 Wharfedale Road Berkshire, RG41 5TP, United KingdomALL DATA SIZE: ≈500gb 1. Company data 2. Confidential data 3. Human Resources, Hire data 4. Personal employees documents 5. Clients data 6. Projects & etc…

Victim:   |  Group: 
 flag

usdermpartners.com 

Company logo
Ransomware Group:

Discovery Date: 2024-07-15 16:07
Estimated Attack Date: 2024-06-18

Sector: Healthcare

Victim:   |  Group: 
IT flag

atos.com 

Company logo
Ransomware Group:

Discovery Date: 2024-07-15 16:06

Sector: Technology
For Atos, being Smart means courage and determination to define new standards of excellence. Smart Electrohydraulics is our response to the everchanging market, a commitment we pursue with a unique approach in which every process is analyzed and optimized: from research to design, from production to delivery, up to after-sales service.SITE: www.atos.com Address : Via alla Piana, 5721018 Sesto Calende VA, ItalyALL DATA SIZE: ≈710gb 1. Company data 2. Confidential data 3. Personal employees documents 4. Projects 5. Clients data & etc…

Victim:   |  Group: 
 flag

thompsoncreek.com_wa 

Company logo
Ransomware Group:

Discovery Date: 2024-07-15 14:06
Estimated Attack Date: 2024-06-10

Sector: Construction
Thompson Creek® Window Company is the Mid-Atlantic region’s premier home improvement replacement products company. We have been customizing and manufacturing replacement windows, doors, gutters, siding and roofing in the Mid-Atlantic region since 1980.SITE: www.thompsoncreek.com Address : 4200 Parliament Place Suite 600 Lanham, MD 20706 USAALL DATA SIZE: ≈750gb 1. Corporate data 2. Financial data, Accounting… 3. Human Resources, Hire data… 4. Payroll, personal Tax forms, Agreements… 5. Personal docs employees, clients… & etc…

Victim:   |  Group: 
US flag

northernsafety.com_wa 

Company logo
Ransomware Group:

Discovery Date: 2024-07-15 14:06
Estimated Attack Date: 2024-06-07

Northern Safety Co., Inc. operates as a personal safety equipment distributor company. The Company offers disposable respirators, earplugs, first aid kits, gloves, hard hats, safety glasses, safety supplies, traffic work boots, and fall harnesses. Northern Safety serves customers in the United States.SITE: www.northernsafety.com Address : 761 S. Danny Thomas Blvd. Memphis, TN 38126 USAALL DATA SIZE: ≈750gb 1. Corporate data 2. Finance data 3. HR 4. Users, Employees personal, confidential data & etc…

Victim:   |  Group: 
DE flag

lambertz.de 

Company logo
Ransomware Group:

Discovery Date: 2024-06-30 07:11

The history of Lambertz is impressive, exciting and rich - Lambertz manages to make the leap from a small bakery in Aachen to one of the oldest confectionery manufacturers in Germany. In 2021, the traditional and family-owned company celebrated its 333rd anniversary.SITE: www.lambertz.de Address : Henry Lambertz GmbH & Co. KG: Borchersstrasse 18 D-52072 Aachen Tel# +49 (0)241 / 89 05-0ALL DATA SIZE: ≈800gb+ 1. Employee Personnel data… 2. Firm data: FiBu, Human Resources… 3. Confidential data… & etc…

Victim:   |  Group: 
US flag

keybenefit.com 

Company logo
Ransomware Group:

Discovery Date: 2024-06-25 08:24
Estimated Attack Date: 2024-05-29

Sector: Healthcare
Key Benefit Administrators, Inc. offers financial services. The Company provides employment benefit services that manages pension, retirement, health, and welfare funds. Key Benefit Administrators serves customers in the United States.SITE: www.keybenefit.com Address : 8330 Allison Pointe Trail Indianapolis, IN 46250, USAALL DATA SIZE: ≈2.5tb 1. Clients 2. Executive 3. HR 4. Audit 5. Home, users, employees data 6. Accounting & etc…

Victim:   |  Group: 
US flag

scrubsandbeyond.com 

Company logo
Ransomware Group:

Discovery Date: 2024-06-25 08:22
Estimated Attack Date: 2024-06-08

Scrubs & Beyond was founded in 2000 with the thinking that the healthcare retail experience could be completely transformed. The result was a retail experience that elevated medical professional essentials beyond the practical — and added a much-needed sense of humanity that was otherwise missing in the industry.SITE: www.scrubsandbeyond.com Address : 12969 Manchester Rd Saint Louis MO, 63131-1805 United StatesALL DATA SIZE: ≈600gb 1. Human Resources data 2. Users folders, Employees confidential data 3. Personal documents 4. Departments data: Accounting, Management… & etc…

Victim:   |  Group: 
US flag

pkaufmann.com 

Company logo
Ransomware Group:

Discovery Date: 2024-06-17 16:12
Estimated Attack Date: 2024-05-24

P/Kaufmann Fabrics is the premier home furnishings textile converter, having supplied our customers with expertly-crafted designs for over sixty five years. We offer a wide range of stocked products including decorative prints, plains, textures, embroideries, jacquards, velvets, sheers, and performance fabrics.SITE: www.pkaufmann.com Address : 3 Park Avenue New York, NY 10016 USA Tel.# 877.292.8375ALL DATA SIZE: ≈850gb 1. Accounting 2. HR, Users 3. Scans, Confidential… & etc…

Victim:   |  Group: 
GB flag

modplan.co.uk 

Company logo
Ransomware Group:

Discovery Date: 2024-06-17 16:12
Estimated Attack Date: 2024-05-28

Sector: Construction
For over 50 years, Modplan has been manufacturing and supplying leading-edge products to our installing partners for the fenestration market. Fundamental to our success is the ‘Modplan Mission’ to continually exceed customers’ increasing expectations. Today’s installing specialists demand the widest choice, the finest quality and the highest standards of customer service. With Modplan, you can specify, stock and install our products with complete confidence, as the company’s culture is one of quality whilst delivering the highest possible standards at all times.SITE: www.modplan.co.uk Address : Modplan Ltd, Imperial Building, Bridge St, Abercarn, Newport NP11 4SB, United KingdomALL DATA SIZE: ≈420gb+ 1. Finance 2. Directors 3. Payroll 4. Home, Users personal data & etc…

Victim:   |  Group: 
PL flag

wielton.com.pl 

Company logo
Ransomware Group:

Discovery Date: 2024-06-17 16:11
Estimated Attack Date: 2024-05-16

Wielton S.A. is one of the top three manufacturers of semi-trailers, trailers and car bodies in Europe and is among the top ten manufacturers in the industry. The Wielton Group’s mission is to create and deliver the best transport solutions for business. We dwell on four core values in our operations: people, initiative, quality, and safety.SITE: www.wielton.com.pl Address : Wielton S.A. is ul. Rymarkiewicz 6, 98-300 Wieluń, PolandALL DATA SIZE: ≈650gb 1. Corporate data 2. Financial data 3. Projects 4. Drawings & etc…

Victim:   |  Group: 
 flag

grupoamper.com 

Company logo
Ransomware Group:

Discovery Date: 2024-06-17 16:11
Estimated Attack Date: 2024-06-07

Sector: Technology
In 1951, the young telecommunications engineer from Salamanca, Antonio Peral, founded Amper Radio, the origin of today’s Amper. In the 1960s, Amper began mass-producing radio and intercom devices and became one of the world’s leading companies in its speciality. Antonio Peral’s entrepreneurial spirit has been with us throughout our long history, helping the company to overcome difficulties and seize opportunities.SITE: www.grupoamper.com Address : C/ Virgilio,2 (Edif. 4). Ciudad de la Imagen, CP.28223, Pozuelo de Alarcón, Madrid, EspañaALL DATA SIZE: ≈650gb 1. R&D data, Projects 2. Users, Employees personal data 3. Scans 4. Company data: HR, Payroll, Finance… & etc…

Victim:   |  Group: 
VN flag

mgfsourcing.com 

Company logo
Ransomware Group:

Discovery Date: 2024-06-17 12:12
Estimated Attack Date: 2024-05-28

MGF Sourcing is an independent US-led global sourcing company founded in 1970. We focus on US-based specialty apparel retailers and, with our strong track record in apparel sourcing and best-in-class technical capabilities, have developed a long-standing reputation as a reliable and trustworthy partner. We offer end-to-end services from design, product development, sourcing, quality assurance, and trade compliance to global logistics. We’ve developed a unique way of working that helps us deliver quality merchandise for our customers on time, at cost, and in compliance. Our values form the foundation of our approach to business and have led us to become a company with over $1 billion USD in annual sales. Headquartered in Columbus, Ohio, the company also maintains offices in Bangladesh, China, Hong Kong, Indonesia, India, Korea, Sri Lanka, and Vietnam. With more than 550 associates in 9 countries, our global team collaborates across categories and borders, supporting innovation and increasing flexibility for our customers.SITE: www.mgfsourcing.com Address : 4200 Regent Street; Suite 205 Columbus, OH 43219 United StatesALL DATA SIZE: ≈500gb+ 1. Corporate data: Finance, HR,… 2. Users personal data & etc…

Victim:   |  Group: 
US flag

talalayglobal.com 

Company logo
Ransomware Group:

Discovery Date: 2024-06-07 15:58
Estimated Attack Date: 2024-04-24

Talalay Global is the number 1 manufacturer of Talalaly latex worldwide. Founded in 1975, we are a trusted partner with decades of reliable experience. The company was built on a simple commitment: to make the world’s best Talalay products and provide ultimate comfort.SITE: www.talalayglobal.com Address : Phoenix, AZ. 44th Street 2910 N., Suite 100 Phoenix, AZ 85018 USAALL DATA SIZE: ≈300gb 1. Department data: Company data, HR, Payroll, Accounting and etc… 2. Users data: Confidential data, personal, employees documents and etc… 3. Public data And much more…

Victim:   |  Group: 
AU flag

akdenizchemson.com 

Company logo
Ransomware Group:

Discovery Date: 2024-06-07 15:57
Estimated Attack Date: 2024-05-03

Akdeniz Chemson is a prominent company specializing in the production of polymer additives, particularly PVC stabilizers. With a rich history dating back to 1942, the company has evolved into a global leader in the plastics industry, offering a wide range of industrial chemicals and additives. Akdeniz Chemson is known for its innovative solutions, wide distribution network, and commitment to sustainability. The company provides creative solutions to various sectors by supplying high-quality PVC stabilizers and other polymer additives, catering to diverse applications in industries like construction, automotive, and more. Additionally, Akdeniz Chemson offers expertise in areas such as material selection, impact modifiers, processing aids, and heat stabilizers, contributing significantly to the enhancement of product performance and durability in PVC applications.SITE: www.akdenizchemson.com Address : Unit 3, 2 Capicure Drive Eastern Creek NSW 2766 Australia ALL DATA SIZE: ≈500gb 1. Corporate data 2. Personal users data 3. Financial, HR, Departments & etc…

Victim:   |  Group: 
US flag

robson.com 

Company logo
Ransomware Group:

Discovery Date: 2024-06-06 14:07
Estimated Attack Date: 2024-05-13

Sector: Not Found
The Robson Companies, are a group of family-owned companies headquartered in Arizona that develop and build luxury active adult resort communities for those aged 55 and over. Their primary business is creating master-planned retirement communities that combine world-class amenities like golf courses, recreation centers, and social clubs with high-end homes designed for active retirees.SITE: www.robson.com Address : 9532 E Riggs Rd, Sun Lakes, Arizona, 85248, USAALL DATA SIZE: ≈600gb 1. Company data (HR, Accounting, Payroll…) 2. Employees personal documents & folders (tax forms, passports scan, DL, ID, SS…) 3. Clients data… & etc…

Victim:   |  Group: 
US flag

elutia.com 

Company logo
Ransomware Group:

Discovery Date: 2024-06-06 14:06
Estimated Attack Date: 2024-05-22

Sector: Healthcare
At Elutia we’re pioneering the future of patient care. Our proprietary drug-eluting biomaterial platforms stand at the forefront of medical innovation. We are dedicated to addressing the pressing challenges that can arise from medical device implant failures. By combatting post-surgical complications that impact patient outcomes and escalate medical costs, we’re ensuring patients not only recover, but thrive without compromise.SITE: www.elutia.com Address : 12510 Prosperity Drive, Suite 370 Silver Spring, MD 20904 USA Tel#: 240-247-1170ALL DATA SIZE: ≈550gb+ 1. Employee Personnel Files… 2. Corporate data: Finance, Payroll, HR… 3. Tax forms, passports, personal, confidential docs, scans… 4. R&D docs & etc…

Victim:   |  Group: 
US flag

ssiworld.com 

Company logo
Ransomware Group:

Discovery Date: 2024-06-06 14:06
Estimated Attack Date: 2024-05-03

Sector: Technology
SSI Shredding Systems, Inc., is a renowned designer and manufacturer of industrial shredders and size reduction systems. The company, located in Wilsonville, Oregon, operates from a 100,000 square foot manufacturing site and specializes in producing low-speed, high-torque industrial shredders for various applications such as solid waste recycling, scrap shredding, and hazardous waste cleanup. SSI’s shredders are utilized in industries like municipal, government, incineration sites, medical waste, and more, demonstrating their versatility and effectiveness in processing materials like solid waste, tires, scrap metals, plastics, demolitions debris, and electronic scrap. Notably, SSI’s M160 shredder is recognized as one of the most powerful shredders globally and is employed in significant facilities like the world’s largest incineration facility in Singapore and for processing organic hazardous waste in Norway. The company prides itself on innovation, custom-tailored solutions, and a culture focused on continually pushing the boundaries of size reduction technology.SITE: www.ssiworld.com Address : 9760 Southwest Freeman Drive Wilsonville, OR 97070 United StatesALL DATA SIZE: ≈300gb 1. HR data 2. Personal users data 3. Department & etc…

Victim:   |  Group: 
GB flag

driver-group.com 

Company logo
Ransomware Group:

Discovery Date: 2024-06-06 14:05

Sector: Construction
Driver Group Plc is a provider of multi-disciplinary construction consultancy services. They offer a wide range of services including building information modeling, claims resolution, commercial and contract services, delay analysis, expert services, project management, scheduling, quantity surveying, training, and dispute resolutions. The company caters to various sectors such as building, energy, infrastructure, marine, mining, oil and gas, transportation, and process and industrial construction projects. Driver Group operates globally with offices in multiple countries and serves clients like global and regional contractors, government entities, individuals, and law firms. Additionally, they provide services related to project management, commercial and contract management, delay analysis, claims resolution, scheduling, expert witnesses, and training, ensuring quality and maximizing investment returns throughout all phases of project development.SITE: www.driver-group.com Address : Driver Group Plc is Suite 706-708, Floor 7, 125 Old Broad Street, London, England, EC2N 1ARALL DATA SIZE: ≈530gb 1. Corporate data: Accounts, HR, Finance 2. Personal users data, personal documents 3. Confidential data, projects 4. Client data & etc…

Victim:   |  Group: 
SE flag

dynasafe.com 

Company logo
Ransomware Group:

Discovery Date: 2024-06-06 13:40
Estimated Attack Date: 2024-06-03

Victim:   |  Group: 
US flag

keytronic.com 

Company logo
Ransomware Group:

Discovery Date: 2024-05-31 12:21

Keytronic has been manufacturing products overseas for over 25 years, first as an OEM, now as an manufacturing provider. You benefit from our global facilities while still working with a US based company. Our customers are some of the world’s leading OEM’s.SITE: www.keytronic.com Address : N. 4424 Sullivan Road Spokane Valley, WA 99216 USAALL DATA SIZE: ≈530gb 1. HR, Finance, Engineering… 2. Corporate data 3. Home Users Data & etc…

Victim:   |  Group: 
US flag

levian.com 

Company logo
Ransomware Group:

Discovery Date: 2024-05-21 00:52

Le Vian is a family-owned jewelry company with a long history, dating from the 15th century. As purveyors of fine jewelry, Le Vian had gained such a reputation that in 1746, Nadir Shah, one Persia’s most powerful rulers, chose them to safeguard the collection of jewels he had amassed — including the famous Kooh-i- Noor diamond. A rich history, across centuries.SITE: www.levian.com Address : 235 Great Neck Road Great Neck, NY 11021 USA ALL DATA SIZE: ~800gb 1. Accounting 2. Financial data 3. Corporate data 4. Personal documents & etc…

Victim:   |  Group: 
CA flag

lactanet.ca 

Company logo
Ransomware Group:

Discovery Date: 2024-05-21 00:49
Estimated Attack Date: 2024-04-10

Lactanet is a partnership between CanWest DHI, CDN, and Valacta, which brings together leading dairy herd improvement organizations in Canada. The partnership provides Canadian dairy farmers with tools necessary for success, combining the strengths of the three partners to face industry challenges. CanWest DHI, established in 2004, offers herd management products and services to over 3,500 herds across five provinces, operating three labs and conducting about 3 million DHI samples annually. Valacta, the dairy production center of expertise, improves dairy farm profitability and sustainability by raising producers’ awareness of various aspects of dairy production. CDN serves as the national genetic evaluation center for dairy cattle, providing data management and information services to dairy herd improvement agencies, A.I. organizations, and Dairy Farmers of Canada. Lactanet’s recent release of Canada’s Best Managed Dairy Herds for 2023 highlights top dairy farms recognized for outstanding herd scores, contributing to excellence within the Canadian dairy industry. The organization’s annual reports showcase top managed herds, publishable herd data, statistics, benchmarks, and articles from dairy experts, providing insights into the Canadian dairy sector. Additionally, Lactanet’s directory includes professionals like geneticists who play key roles in the organizationSITE: www.lactanet.ca Address : 660 Speedvale Avenue West, Suite 101, Guelph, Ontario N1K 1E5 CANADAALL DATA SIZE: ≈520gb+ 1. Corporate data 2. Employees, users data 3. Lab data And much more…

Victim:   |  Group: 
IT flag

mfgroup.it 

Company logo
Ransomware Group:

Discovery Date: 2024-05-21 00:46
Estimated Attack Date: 2024-04-24

Sector: Construction
The company was founded in the early 90s by a passion for the industrial sector and the idea to invest in companies with high production and competitive potential. The company has over 150 employees, two manufacturing sites in Italy (PUBLICENTER and CIM) with a total surface area of over 15,000 square meters and a direct branch in the USA. The company operates with medium and long-term objectives, favoring stability and harmony inside and outside the company, through the professional growth of employees and the enhancement of relationships with its customers and partners.OUR BRANDS Publicenter Cim Card onlineSITE: www.mfgroup.it Address : MF Group S.r.l. Località Braine, 54/A Frazione Rioveggio 40036 Monzuno (BO) ItaliaTel# +39 051 6776 511ALL DATA SIZE: ≈200gb 1. Corporate data 2. Users confidential data and documents 3. Departments data And much more…

Victim:   |  Group: 
PT flag

grupocadarso.com 

Company logo
Ransomware Group:

Discovery Date: 2024-05-21 00:44
Estimated Attack Date: 2024-05-04

Grupo Cadarso is a family company founded in 1948 by Mr. Antonio Cadarso. Initially focused on distributing watches and jewelry, the company has evolved to encompass two main business sectors: Watchmaking and Hospitality. In the Watchmaking sector, Grupo Cadarso distributes a selection of prestigious international brands in Spain, Portugal, and Andorra, emphasizing quality service and modernization to lead the sector. The Hospitality sector, under the Condes Hotels brand, includes landmark hotels like Hotel Condes and Hotel España, with a notable addition being the Monument Hotel, home to the acclaimed Lasarte restaurant with 3 Michelin stars. Additionally, Grupo Cadarso owns companies like Eurochrono, specializing in fashionable watches, and Gears, a watchmaking company operating in the Spanish market.SITE: www.grupocadarso.com Address : 35 Avenida Marquês De Tomar 5º Lisbon, Lisbon, 1050 153 PortugalALL DATA SIZE: ≈570gb 1. Corporate data, Group data 2. Personal users data, personal documents, Client data 3. Financial documents, confidential data & etc…

Victim:   |  Group: 
US flag

atlasoil.com 

Company logo
Ransomware Group:

Discovery Date: 2024-05-21 00:42
Estimated Attack Date: 2024-05-07

Sector: Energy
Headquartered in Houston, TX, Atlas Oil is the inaugural Simon Group Holdings company. Since our founding in 1985, Atlas has grown through technological and operational innovation, all while maintaining our unwavering commitment to customer success. Atlas offers single-source solutions for fuel, transportation and logistics and is one of the largest fuel distributors in the country, delivering over 1 billion gallons of fuel annually to customers in 49 states.SITE: www.atlasoil.com Address : 2050 W Sam Houston Pkwy S Houston, TX 77042 USA Tel.# (800) 878-2000ALL DATA SIZE: ≈730gb 1. Corporate data: Accounts, HR, Finance, Executive… 2. Departments data 3. Users, Employees data & etc…

Victim:   |  Group: 
US flag

trugreen.com 

Company logo
Ransomware Group:

Discovery Date: 2024-05-21 00:40
Estimated Attack Date: 2024-05-03

TruGreen is a full-service lawn care provider focused on delivering high-quality, tailored solutions to both residential and commercial customers.SITE: www.trugreen.com Address : 1790 Kirby Parkway Forum II Suite 300 Memphis, TN 38138 USAALL DATA SIZE: ≈850gb 1. Corporate data 2. Personal users data 3. Payroll, financial & etc…

Victim:   |  Group: 
US flag

cmactrans.com 

Company logo
Ransomware Group:

Discovery Date: 2024-05-04 12:28
Estimated Attack Date: 2024-03-31

CMAC Transportation is a family-owned, veteran-owned transportation, logistics, and warehousing provider located in Brownstown, MI.SITE: www.cmactrans.com Address : 20450 Sibley Road. Brownstown, MI 48193 USAALL DATA SIZE: ~200gb+ 1. HR 2. Finance 3. Personal 4. Personnel Files & etc…

Victim:   |  Group: 
US flag

ids-michigan.com 

Company logo
Ransomware Group:

Discovery Date: 2024-05-04 12:28
Estimated Attack Date: 2024-04-02

IDS fully integrated firm specializing in architecture, engineering, interiors, technology, energy & sustainability.SITE: www.ids-michigan.com Address : 1441 W Long Lake Rd, Suite 200, Troy, MI 48098 USAALL DATA SIZE: ~550gb+ 1. Projects 2. CAD and drawings 3. Users, Corporate data & etc…

Victim:   |  Group: 
CA flag

provencherroy.ca 

Company logo
Ransomware Group:

Discovery Date: 2024-05-04 12:27
Estimated Attack Date: 2024-04-01

Sector: Construction
Provencher_Roy is a multidisciplinary practice striving to create living spaces that are respectful of citizens and the built environment, through design solutions that are inclusive, meaningful, and sustainable.SITE: www.provencherroy.ca Address : 276 Saint-Jacques Street, Suite 700 Montréal (Québec) H2Y 1N3 CanadaTel# 514 844.3938ALL DATA SIZE: ~3tb+ 1. Projects (2023, 2024) 2. CAD, 3D Drawings 3. Ottawa data 4. Corporate data (HR, FINANCE…), Personal employees documents & etc…

Victim:   |  Group: 
CH flag

swisspro.ch 

Company logo
Ransomware Group:

Discovery Date: 2024-05-04 12:26

Sector: Technology
swisspro ist Ihr perfekter Partner für massgeschneiderte Gesamtlösungen rund um Beratung, Realisierung, Wartung und Betrieb von Elektroinstallation, ICT und Automation – ob für KMU oder Grossunternehmen. Mit unserer langjährigen Erfahrung, unserem grossen Know-how und den modernsten Technologien unterstützen wir Sie ganzheitlich, kompetent und zuverlässig, damit Sie sich ganz um Ihr Kerngeschäft kümmern können. Mit unseren rund 1’000 Spezialistinnen und Spezialisten an 20 Standorten in der ganzen Schweiz sind wir immer in Ihrer Nähe.SITE: www.swisspro.ch Address : swisspro AG In der Luberzen 1 8902 UrdorfTel# +41 44 444 11 22ALL DATA SIZE: ~700gb 1. Corporate data 2. Employees personal data, infos 3. Customer data & etc…

Victim:   |  Group: 
US flag

olsonsteel.com 

Company logo
Ransomware Group:

Discovery Date: 2024-05-04 12:25

Sector: Construction
Olson & Co. Steel is a premier steel contractor that provides steel fabrication, erection, and specialty construction services. The company was formed in 2002 from the consolidation of Bostrom Bergen Metal Products and Meddco Metals, and has a long history of serving the construction industry since 1960. Olson & Co. Steel has completed various specialty projects, including the Potrero Power Station A Building, Santa Clara Valley Medical Center Art Feature, Massy House, Hangar 3 Timber Repair Scaffold and Shoring Tower, Orbital Art Feature, Stanford Central Campus Process Steam System, U.C Davis Brewery, Saint Peter & Paul Church, Stanley Mosk Library & Courts, San Jose Southside Police Station, Geneva Car Enclosure (Butler), California Dairies Plant 7, California Dairies Visalia Plant, Keyes Ethanol Plant, and Pixley Ethanol. The company is a market leader in bringing technology to its detailing, fabrication, and erection processes, and strives for innovation and continuous improvement.SITE: www.olsonsteel.com Address : 1941 Davis Street, San Leandro, CA, 94577 USAALL DATA SIZE: ≈900gb 1. Company data: HR, Accounting and etc… 2. Employees, users data + personal documents 3. Projects and CAD, Confidetial documents and drawings And much more…

Victim:   |  Group: 
IT flag

teaspa.it 

Company logo
Ransomware Group:

Discovery Date: 2024-05-04 12:24
Estimated Attack Date: 2024-04-19

Territorio Energia Ambiente S.P.A provides commercial services. The Company offers natural gas and electricity distribution, as well as waste and cleaning management, sewer servicing, technical and engineering services, and road maintenance activities. Territorio Energia Ambiente serves customers in Italy.SITE: www.teaspa.it Address : Via Taliercio 3 Mantova, 46100 ItalyALL DATA SIZE: ≈1tb 1. Users, Employees folder with personal docs 2. Company data 3. Projects & etc…

Victim:   |  Group: 
ES flag

ayesa.com 

Company logo
Ransomware Group:

Discovery Date: 2024-05-04 12:23
Estimated Attack Date: 2024-04-24

Sector: Technology
Ayesa is a leading provider of technology and engineering services worldwide with over 12,500 employees and a direct presence in 23 countries across Europe, America, Africa, and Asia. Ayesa excels in developing and implementing innovative digital and engineering solutions for both private companies and public administrations. On the engineering side, our professionals applies the latest cutting-edge technologies to design and supervise infrastructure projects as well as create digital solutions that manage sustainability and efficient resources management. On the technology standpoint, we integrate all the essential technologies and services, to assist clients in resolving their most urgent business challenges and digitally transforming their business to make life easier, responsive, efficient and agile.SITE: www.ayesa.com Address : 21 Avda Francisco De La Roche Santa Cruz de Tenerife Canary Islands 38001, SpainALL DATA SIZE: ≈4.5tb+ 1. Company data 2. Employees personal data 3. Projects, CAD And much more…

Victim:   |  Group: 
DE flag

synlab.com 

Company logo
Ransomware Group:

Discovery Date: 2024-05-04 12:21

Sector: Healthcare
SYNLAB is a basic provider in many national healthcare systems, and a leading provider of laboratory diagnostic services in Europe for practising doctors, clinics and patients. Welcome to SYNLAB. We’re here to help.SITE: www.synlab.com Address : SYNLAB International GmbH Moosacher Straße 88 80809 Munich | GermanyALL DATA SIZE: ≈1.5tb 1. Company data 2. Employees personal documents 3. Customer personal data! 4. medical analyzes (spermograms, toxicology, anatomy…) & etc…

Victim:   |  Group: 
GB flag

active-pcb.com 

Company logo
Ransomware Group:

Discovery Date: 2024-05-04 12:20
Estimated Attack Date: 2024-04-19

Active-PCB has been manufacturing for OEMs in the EMS market since 1997. The company ranks among the very best in its sector, and is renowned for its responsive, fast turn solutions for small to medium batch, high-complexity assemblies. Proven expertise and exemplary customer service sets the organisation apart from the market, with Active-PCB establishing a unique infrastructure dedicated to its customers’ prototype and production needs, no matter how challenging or how urgent.SITE: www.active-pcb.com Address : Active-PCB Solutions Ltd, Unit 4, Acre Road, Reading, Berkshire, RG2 0SURegistered in England Company no: 3361843Tel.# 0118 931 0292ALL DATA SIZE: ≈750gb 1. Company data: Finance, HR & etc… 2. Employees personal documents 3. Dev data 4. Sales data: Customers & etc…

Victim:   |  Group: 
IT flag

gai-it.com 

Company logo
Ransomware Group:

Discovery Date: 2024-05-04 12:19
Estimated Attack Date: 2024-04-18

Sector: Technology
For over 70 years and three generations, Gai has established several milestones in the development of high quality bottling. At the same time, the product range has grown to include sparkling beverages, spirits and oily liquids. Thus, in addition to wines and beers, now even in cans. Today, Gai machines are running worldwide, in all types of bottling and labelling operations, with specialized technical assistance and lifetime spare parts.SITE: www.gai-it.com Address : 33 & B Fraz. Cappelli, Ceresole Alba, Piedmont, 12040, ItalyALL DATA SIZE: ≈750gb 1. Company data 2. Home users data: Employees personal documents 3. Projects & etc…

Victim:   |  Group: 
US flag

thelawrencegroup.com 

Company logo
Ransomware Group:

Discovery Date: 2024-05-03 12:26

Sector: Construction
Lawrence Group is a building design, development, and project delivery firm headquartered in St. Louis. Recently named a “Hospitality Giant” by Interior Design Magazine, Lawrence Group offers architecture, interior design, a retail furniture showroom. In 1983, three University of Kansas design school graduates – Steve Smith, David Ohlemeyer and Paul Doerner – started Lawrence Group with the vision of becoming a design and construction super firm. They named the firm Lawrence Group after Lawrence, Kansas, the home of their alma mater. They envisioned the firm becoming generational in its pursuit of realizing clients’ dreams. Today, the core principle of realizing dreams is a cornerstone of the firm and an inspiration for succeeding generations.SITE: www.thelawrencegroup.com Address : 319 N 4th St Ste 1000, St. Louis, Missouri, 63102, United StatesALL DATA SIZE: 505gb 1. Personal documents 2. Users folders 3. Driver License and passports 4. Projects and etc…

Victim:   |  Group: 
US flag

bdcm.com 

Company logo
Ransomware Group:

Discovery Date: 2024-05-01 04:16
Estimated Attack Date: 2024-04-09

Black Diamond Capital Management, a privately held alternative asset management firm specializing in high yield credit, stressed and distressed credit, restructurings and event-driven situations. The company offers portfolio management, financial planning, and advisory services to individuals, institutions, trusts, private funds, charitable organizations, and investment companies.SITE: www.bdcm.com Address : - UNITED STATES 2187 Atlantic Street 9th Floor Stamford, CT 06902 - UNITED KINGDOM 16 Berkeley Street London, England W1J 8DZ - U.S. VIRGIN ISLANDS 5330 Yacht Haven Grande Suite 100, Box 35 St. Thomas, USVI 00802ALL DATA SIZE: ~900gb+ 1. Company data 2. Employees data 3. Personal, confidential documents 4. Customer data & etc…

Victim:   |  Group: 
US flag

thelawrencegroup.com_privat 

Company logo
Ransomware Group:

Discovery Date: 2024-04-27 00:17

Sector: Construction
Lawrence Group is a building design, development, and project delivery firm headquartered in St. Louis. Recently named a “Hospitality Giant” by Interior Design Magazine, Lawrence Group offers architecture, interior design, a retail furniture showroom. In 1983, three University of Kansas design school graduates – Steve Smith, David Ohlemeyer and Paul Doerner – started Lawrence Group with the vision of becoming a design and construction super firm. They named the firm Lawrence Group after Lawrence, Kansas, the home of their alma mater. They envisioned the firm becoming generational in its pursuit of realizing clients’ dreams. Today, the core principle of realizing dreams is a cornerstone of the firm and an inspiration for succeeding generations.SITE: www.thelawrencegroup.com Address : 319 N 4th St Ste 1000, St. Louis, Missouri, 63102, United StatesALL DATA SIZE: 505gb 1. Personal documents 2. Users folders 3. Driver License and passports 4. Projects and etc…

Victim:   |  Group: 
GB flag

true.co.uk 

Company logo
Ransomware Group:

Discovery Date: 2024-04-24 12:22
Estimated Attack Date: 2024-02-09

Sector: Technology
TRUE Solicitors LLP Great results start with great people. We are extremely proud to have such fantastic and loyal staff at TRUE Solicitors LLP, and you can meet them here. Our solicitors and legal executives are highly experienced in handling Personal Injury claims, Clinical Negligence cases, Financial Mis-selling, Residential Conveyancing, and Housing Disrepair claims.SITE: www.true.co.uk Address : Percy House, Percy Street Newcastle Upon Tyne NE1 4PWDX 715140 Newcastle 19Unit 605, Fort Dunlop Fort Parkway, Birmingham B24 9FDALL DATA SIZE: ~DW:312gb 1. Group data 2. Financial 3. Legal 4. Personal users folders 5. Clients data and etc…

Victim:   |  Group: 
US flag

fluenthome.com 

Company logo
Ransomware Group:

Discovery Date: 2024-04-19 12:44
Estimated Attack Date: 2024-04-02

Fluent Home General Information The company offers home security technology, energy management, security automation and mobile products and associated installation services, enhancing the quality of life and protecting homes and families in a user-friendly manner.SITE: www.fluenthome.com Address : Canadian Headquarters Edmonton, AB American Headquarters American Fork, UTALL DATA SIZE: ~600gb+ 1. Departments data(Financial, HR and etc.) 2. RnD 3. Users personal documents & etc…

Victim:   |  Group: 
GB flag

macphie.com 

Company logo
Ransomware Group:

Discovery Date: 2024-04-19 12:43
Estimated Attack Date: 2024-03-14

Macphie An internationally renowned family owned food ingredient manufacturer. From cake mixes to savoury sauces and everything in between, we work with a range of food brands who create amazing dishes based on our products.SITE: www.macphie.com Address : Glenbervie, Stonehaven AB39 3YG ScotlandALL DATA SIZE: ~600gb 1. Accounts data 2. Fincancial data 3. HR 4. Personal users folders & etc…

Victim:   |  Group: 
CH flag

cavotec.com 

Company logo
Ransomware Group:

Discovery Date: 2024-04-19 12:43
Estimated Attack Date: 2024-04-04

Cavotec is a leading cleantech company that designs and delivers connection and electrification solutions to enable the decarbonization of ports and industrial applications. Backed by more than 40 years of experience, our systems ensure safe, efficient and sustainable operations for a wide variety of customers and applications worldwide. Cavotec’s personnel, located in some 30 countries around the world, represent a large number of cultures, and provide customers with local support, backed by the Group’s global network of engineering expertise.SITE: www.cavotec.com Address : Cavotec SA Corso Elvezia 16 - CH-6900 Lugano, SwitzerlandALL DATA SIZE: ~800gb 1. Engeneering and projects 2. Technical R&D and drawings 3. Accounting and finance 4. HR and personal users data & etc…

Victim:   |  Group: 
DE flag

hymer-alu.de 

Company logo
Ransomware Group:

Discovery Date: 2024-04-19 12:42
Estimated Attack Date: 2024-04-04

Our HYMER Automotive division offers you customised system solutions all over Europe for the caravanning sector, the commercial vehicle, bus and special vehicle manufacturing industry and for shipbuilding and the agricultural industry. Our system components include driver’s cab doors and windows, cabin doors, storage compartment doors, bed systems and fold-down beds. Every component is adapted to the quality, functionality and design required by our customers. We offer our customers an “all-round carefree package” that integrates our excellent project and process engineering competencies and our many services. Our Standard Access Solutions division develops and manufactures high-quality access solutions made of aluminium. They feature high-quality craftsmanship, long durability, innovative functions and a high level of safety for users. Our standard range includes ladders of all types, steps, mobile towers, work platforms, aluminium walkways, etc. Our customers mainly come from industry and construction. Our products are sold through the specialist retail trade.SITE: www.hymer-alu.de Address : Hymer-Leichtmetallbau GmbH & Co. KG Käferhofen 10 88239 Wangen GERMANYALL DATA SIZE: ~2tb+ 1. Projects 2. Corporate data 3. Users, Employees personal data & etc…

Victim:   |  Group: 
US flag

azdel.com 

Company logo
Ransomware Group:

Discovery Date: 2024-04-19 12:41
Estimated Attack Date: 2024-03-26

Hanwha continues to grow by quickly anticipating and responding to rapidly changing business environments with a balanced business portfolio that includes aerospace, energy & materials, finance and retail & services. As of 2022, we are the seventh largest business enterprise in South Korea and a Fortune Global 500 company. Our affiliates are becoming global leaders in their arenas by strengthening core competitiveness and securing future growth engines based on sound financial structures. For more than 70 years, Hanwha has led economic growth and helped change the world with ceaseless innovation. Now, we are building on our achievements in business areas including aerospace, energy & materials, finance and retail & services. Going forward, we will continue to embrace bold challenges that offer people more prosperous lives, more secure communities and a more sustainable future for the planet.SITE: www.azdel.com Address : Technology Center and Executive Offices 2000 Enterprise Drive Forest, VA 24551 USAALL DATA SIZE: ~ 1 Tb 1. Company data 2. Contracts and agreements 3. Projects, Drawings (.dwg) & etc…

Victim:   |  Group: 
US flag

doyon.com | doyondrilling.com 

Company logo
Ransomware Group:

Discovery Date: 2024-04-17 23:48
Estimated Attack Date: 2024-04-02

Sector: Energy
Doyon, Limited, the regional Alaska Native corporation for Interior Alaska, is a for-profit corporation with more than 20,500 shareholders. Headquartered in Fairbanks, Alaska, Doyon employs over 800 individuals in Alaska and across the nation. Doyon operates a diverse family of companies in the areas of oil field services, government contracting utilities, construction, information technology, natural resources development, tourism, and real estate.SITE: www.doyon.com Address : 1 Doyon Place, Suite 300 Fairbanks, Alaska 99701-2941Doyon Drilling Inc. (DDI) operates on the North Slope of Alaska with nine of the most unique oil and gas land drilling rigs specially designed to drill oil wells in extreme conditions. In 1982 as a joint venture between Doyon, Limited, an Alaska Native regional corporation, and Nugget Alaska, Inc.SITE: www.doyondrilling.com Address : Doyon Drilling, Inc. Address. 11500 Sukdu Way Ste 200. Anchorage, Alaska 99515ALL DATA SIZE: ~700gb+ 1. Corporate data(Accountings, HR and etc.) 2. Employees personal infos 3. Scans, Confidential, users & etc…

Victim:   |  Group: 
US flag

processsolutions.com 

Company logo
Ransomware Group:

Discovery Date: 2024-04-09 17:07
Estimated Attack Date: 2024-03-26

PROCESS SOLUTIONS Control System Design & Integration Since 1987, manufacturers across industries have trusted Process Solutions to deliver custom-engineered control systems that solve their unique production challenges. Our engineering team has hundreds of combined years of experience designing high-quality systems that simplify operations and improve performance. From small pushbutton stations, to large controls cabinets and facility wide monitoring systems, we can provide a purpose-built solution to meet your requirements and help you achieve your objectives.SITE: www.processsolutions.com Address : 17212 51st Ave NE, Suite 112 Arlington, WA 98223 USAALL DATA SIZE: ~1tb 1. Projects data, CAD 2. Corporate data 3. Users, Personal data & etc…

Victim:   |  Group: 
US flag

numotion.com 

Company logo
Ransomware Group:

Discovery Date: 2024-04-09 17:06
Estimated Attack Date: 2024-03-02

Sector: Healthcare
Numotion is the nation’s largest and leading provider of products and services to help individuals with mobility limitations maximize their health, personal independence, and actively participate in everyday life. Through our collection of brands, we provide those living with disabilities greater independence. Numotion, the company works with clinicians and health plans to serve people living with disabilities with prescription-based products including individually configured Complex Rehab Technology (CRT), catheters, and other assistive technologies.SITE: www.numotion.com Address : 155 Franklin Rd, Ste. 300. Brentwood, TN 37027, USAALL DATA SIZE: ~2.0tb 1. Human Resources 2. Users Shared Data 3. Payroll and financial data 4. Personal Users Folders 5. Legal data 6. Confidential documents & etc…

Victim:   |  Group: 
US flag

siemensmfg.com 

Company logo
Ransomware Group:

Discovery Date: 2024-04-09 17:06
Estimated Attack Date: 2024-03-27

At Siemens, we are dedicated to creating value for our customers and have an old-fashioned commitment to upholding our reputation for quality and service. We achieve this through efficient electronic assembly, advanced technical skills, innovative solutions, and customer-centric service. Our versatile facilities help insure that your project is handled efficiently and cost-effectively, and we have the technology to become a valued partner in your business. With our longstanding workforce – 10 years average hourly employee experience, and 20 years average management employee experience – we have the right people to deliver for you.SITE: www.siemensmfg.com Address : Siemens Mfg. Co., Inc. Freeburg Plant 410 W. Washington St. Freeburg, Illinois 62243New Athens Plant 500 N Johnson Street New Athens, IL 62264-1157ALL DATA SIZE: ~800gb+ 1. Common data 2. NewG 3. HMO & etc…

Victim:   |  Group: 
GB flag

Parklane Group 

Company logo
Ransomware Group:

Discovery Date: 2024-04-09 17:05
Estimated Attack Date: 2024-03-28

The Parklane Group has earned a reputation for being a market leader in property and leisure. With a substantial property holding in the UK, and family values at the heart of everything we do, we are passionate about breaking boundaries and driving constant innovation to create outstanding functional spaces. SITE: www.theparklanegroup.com BRANDS: Parklane Properties Roomzzz INC IconInc Workinc Livinc RentInc Leeds Golf Centre UOWNROOMZZZ Aparthotel that combines the style of a classy hotel with the convenience of a serviced apartment. You might have seen us around. SITE: www.roomzzz.com Address : Chester City Norroy House, Nuns Rd Chester CH1 2LJAt Iconinc, your feel-good factor is our focus. From the retreat of your individual studio apartment to the well-equipped on-site gym or bookable study rooms, it’s a student home designed to help you thrive. More private well-being club than traditional student accommodation, find your place to reset and recharge, ready to achieve amazing things tomorrow. SITE: www.iconinc.co.uk Address : 2 Westfield Rd, Woodhouse, Leeds LS3 1DH, United KingdomParklane Properties cover a huge range of locations in Leeds. Whether you’re looking for student accommodation in the bustling student hot spots around Leeds, or a professional let in the leafy suburbs or indeed have a house you’d like to sell in and around Leeds - Parklane Properties should be your first port of call when contacting estate agents in Leeds. SITE: www.parklaneproperties.com Address : Parklane Properties 25-27 Otley Road, Headingley, LS6 3AA.ALL DATA SIZE: ~1.5tb+ 1. Corporate data 2. Cliens and Users personal data 3. HRs, ACCOUNTINGs & etc…

Victim:   |  Group: 
US flag

sermo.com 

Company logo
Ransomware Group:

Discovery Date: 2024-04-09 17:04
Estimated Attack Date: 2024-03-20

Sector: Healthcare
Sermo Engaging with more than 1.3 million HCPs across 150 countries, we offer a unique physician-first online community that allows clinicians to communicate about issues that are important to them and their patients. Doctors can access our global community and the many benefits here.SITE: www.sermo.com Address : 200 Park Ave S, New York City, New York, 10003 United States Tel# (212) 358-0800ALL DATA SIZE: ~700gb 1. Personal data 2. Departments data 3. Finance 4. Projects, patient data infos & etc…

Victim:   |  Group: 
US flag

schlesingerlaw.com 

Company logo
Ransomware Group:

Discovery Date: 2024-04-09 17:03
Estimated Attack Date: 2024-03-26

At Schlesinger Law Offices, P.A., our Fort Lauderdale personal injury attorneys understand just how difficult dealing with a serious injury can be. With more than 70 years of collective experience, our firm has the experience you need to navigate any legal hurdle that comes your way, and we will help you fight to secure the compensation you need to cover any medical bills or damages you incurred.SITE: www.schlesingerlaw.com Address : 1212 Southeast Third Avenue Fort Lauderdale, FL 33316 USAALL DATA SIZE: ~2.2tb+ 1. Library 2. Scans 3. Users personal data & etc…

Victim:   |  Group: 
US flag

robar.com 

Company logo
Ransomware Group:

Discovery Date: 2024-04-09 17:02
Estimated Attack Date: 2024-02-27

Sector: Technology
Robar Enterprises, Inc.– the holding company that brings you Endura Steel, Smith Ironworks, Hi-Grade Materials, and AsCon Recycling – a division of Hi-Grade Materials. In business for over half a century, we are the leading supplier of construction materials throughout Southern California, Southern Nevada, and Western Arizona.SITE: www.robar.com Address : Hesperia, 17671 Bear Valley Rd, United StatesALL DATA SIZE: ~480gb 1. Departments 2. Financial data 3. Payroll Departments 4. Human Resources departments & etc…

Victim:   |  Group: 
US flag

atlascontainer.com 

Company logo
Ransomware Group:

Discovery Date: 2024-04-09 17:00
Estimated Attack Date: 2024-03-28

Atlas Container Corporation is a manufacturer of high-quality packaging and display products, as well as non-corrugated items to help meet your packaging needs. Atlas can provide everything you need from stock shipping boxes to high end graphic point of purchase displays. We deliver with our own trucks and run our own manufacturing equipment, so you are buying directly from the source. From conception to finished product, Atlas can service all your needs.SITE: www.atlascontainer.com Address : 8140 Telegraph Rd. Severn MD 21144 USAALL DATA SIZE: ~200gb 1. Users folders 2. Finance data 3. Human Resources 4. 401k 5. Accounting & etc…

Victim:   |  Group: 
ZA flag

patersoncooke.com 

Company logo
Ransomware Group:

Discovery Date: 2024-04-09 17:00
Estimated Attack Date: 2024-03-28

Sector: Construction
Paterson & Cooke was founded as an engineering consultancy in 1991 by Angus Paterson and Robert Cooke specialising in slurry pipeline and mine backfilling consulting services to the South African mining industry. Through extensive early work with major South African mining companies, they gained invaluable knowledge and experience designing innovative and effective solutions for the challenges presented when backfilling some of the country’s deepest gold mines. More than three decades later, the founding vision of providing the most sought-after specialist consulting engineering services to the mining industry holds true, and our expertise has grown to include slurry pipeline systems, tailings and mine waste technology, mine backfill, offshore engineering, and mineral processing. Our reputation as global leaders in this industry is directly attributed to the work of our diverse team of world class engineers and specialists operating out of offices in Australia, Canada, Chile, South Africa, Spain, Sweden, the United Kingdom, and USA. Six of these offices have comprehensive laboratory testing facilities.SITE: www.patersoncooke.com Address : 221 Corporate Circle, Suite D, Golden, CO 80401-5637, USAALL DATA SIZE: ~450gb+ 1. Corporate data 2. Drawings 3. Users personal data 4. Home users folders and docs & etc…

Victim:   |  Group: 
US flag

arch-con.com 

Company logo
Ransomware Group:

Discovery Date: 2024-04-09 16:59
Estimated Attack Date: 2024-03-07

Sector: Construction
Arch-Con® Corporation is a national commercial general contractor founded in 2000 with offices in Houston, Dallas, Austin, and Denver. Arch-Con’s award-winning team simplifies the construction process using the latest cost-efficient technologies to stay on the cutting edge of the industry.SITE: www.arch-con.com Address : 190 T C Jester Blvd. Suite 200, Houston, Texas 77030, USALL DATA SIZE: ~2.0tb 1. Accounting 2. Administration 3. Departments data 4. Users personal data & etc…

Victim:   |  Group: 
US flag

columbiapipe.com 

Company logo
Ransomware Group:

Discovery Date: 2024-04-09 15:19
Estimated Attack Date: 2024-03-04

Sector: Construction
Since 1935, Columbia Pipe & Supply Co. has consistently delivered a wide range of high quality products and SERVICE plus SOLUTIONS. Since we are an independent company, our sales teams have the flexibility to focus their expertise on our customers’ unique needs without the bureaucratic limitations of a large corporation. With more than $50 million inventory, including over 130,000 individual SKUs, stocked in close to one million square feet of warehouse, Columbia Pipe is able to connect our global supply of product with our local markets. We have 16 mutually-supporting locations in Illinois, Indiana, Michigan, Wisconsin and Minnesota, so wherever you are—we are close-by.SITE: www.columbiapipe.com Address : 1120 West Pershing Road Chicago, IL 60609 Phone: 800-368-2709 Fax: 773-927-8415ALL DATA SIZE: ~450gb 1. Payroll 2. Finance 3. Accounts, Budgets 4. Human Resources 5. User Home Directories & etc…

Victim:   |  Group: 
GB flag

pdq-airspares.co.uk 

Company logo
Ransomware Group:

Discovery Date: 2024-04-01 17:53
Estimated Attack Date: 2024-02-29

PDQ Airspares is a leading global provider of aerospace consumables to the Airline and MRO markets. Our reputation for delivering a range of solutions for your operational requirements is unparalleled in the industry. Whatever your requirements may be, you can rely on us to deliver the products you need when you need them.SITE: www.pdq-airspares.co.uk Address : The Office, Redbrook, Fordingbridge Hampshire, SP6 2ET, UKALL DATA SIZE: ~500gb+ 1. Corporate data 2. Personal users documents & etc…

Victim:   |  Group: 
AU flag

vilis.com 

Company logo
Ransomware Group:

Discovery Date: 2024-03-27 21:22
Estimated Attack Date: 2024-02-14

Sector: Not Found
The Vili’s story of success from humble beginnings to an iconic South Australian business is one that tugs on the heart strings. Vili’s father arrived in Adelaide in 1956, escaping the Hungarian revolution, all his belongings in one old suitcase tied together with a belt. Survival was paramount, education was unnecessary. Both Vili’s parents had been chefs in Hungary, so creating food was already a seed that had taken hold and was starting to grow. As soon as Vili was old enough, he went to work at a local bakery at the ripe age of 14 to help support his family. With hard work, commitment and passion, Vili and Rosemary, life and business partners, established a business that was to eventually become one of South Australia’s great success stories, distributing nationally and exporting to 24 countries globally.SITE: www.vilis.com Address : 2-14 Manchester Street, Mile End South, South Australia, 5031ALL DATA SIZE: ~350gb 1. Personal documents and infos employees 2. Financial data 3. Incident reports 4. Employees folders, files and etc…

Victim:   |  Group: 
US flag

pstrans.com 

Company logo
Ransomware Group:

Discovery Date: 2024-03-27 21:22

P&S Transportation is one of the country’s fastest-growing providers of flatbed truckload transportation and logistics, primarily serving customers in the building materials, oil and natural gas, and steel industries.SITE: www.pstrans.com Address : 1810 Avenue C Ensley, AL 35218 USAALL DATA SIZE: ~1.5tb 1. Personal employees data 2. Corporate data 3. Finance and accounting 4. HR and etc…

Victim:   |  Group: 
US flag

fpdcompany.com 

Company logo
Ransomware Group:

Discovery Date: 2024-03-27 21:21
Estimated Attack Date: 2024-02-21

FPD Company As a renowned global supplier, we cater to the aerospace and medical sectors, employing a synergy of manufacturing techniques to deliver unparalleled quality and superior products. Our titanium offerings encompass closed die forgings, precision machined components, and meticulously crafted assemblies.SITE: www.fpdcompany.com Address : 124 Hidden Valley Road McMurray, PA 15317 United StatesALL DATA SIZE: ~1.5tb 1. Accounting 2. Users and engusers personal folders 3. Engineering 4. Finance and Legal & etc…

Victim:   |  Group: 
US flag

northamericansigns.com 

Company logo
Ransomware Group:

Discovery Date: 2024-03-27 21:20
Estimated Attack Date: 2024-02-28

North American Signs A commercial signage industry leader, North American Signs is a full-service provider from design and project management to manufacturing and service.SITE: www.northamericansigns.com Address : 3601 West Lathrop South Bend, IN 46628 USAALL DATA SIZE: ~250gb 1. Office data 2. Accounting 3. Design 4. CAD 5. Users folders and files & etc…

Victim:   |  Group: 
US flag

otrwheel.com 

Company logo
Ransomware Group:

Discovery Date: 2024-03-27 21:19
Estimated Attack Date: 2024-03-02

OTR’s product portfolio includes tires, wheels, assemblies, tracks, tubes, ballast and more. Our tire lineup comprises over 1,700 models and 300+ distinctive treads, with bias and radial pneumatic (directional and non-directional); semi-pneumatic; solid (directional and non-directional); non-marking; and airless. The portfolio also includes over 1,000 wheels, with single- and multi-piece versions in steel and aluminum, as well as cast disc units. In total, there are over 100,000 standard items, many of which can be customized for unique applications.SITE: www.otrwheel.com Address : 195 Chatillon Rd NE Ste 4, Rome, Georgia, United StatesALL DATA SIZE: ~700gb 1. Human Resources 2. Engineering 3. Finance 4. Customers 5. Confidential personal documents employees & etc…

Victim:   |  Group: 
US flag

prodrive.com 

Company logo
Ransomware Group:

Discovery Date: 2024-03-27 21:19
Estimated Attack Date: 2024-03-07

Prodrive is a world leading motorsport and advanced technology business. Our business and culture is founded in motorsport but today we also help businesses in the automotive, aerospace, marine and other sectors create innovative engineering solutions which realise their ambitions.SITE: www.prodrive.com Address : Prodrive Holdings Limited Banbury, Oxfordshire OX16 4XD, UKALL DATA SIZE: ~900gb 1. Holding & Corporate data 2. Financial data 3. Projects, R&D data (new, current and old) 4. Users personal data & etc…

Victim:   |  Group: 
US flag

dgse.com 

Company logo
Ransomware Group:

Discovery Date: 2024-03-27 21:18
Estimated Attack Date: 2024-03-05

For more than four decades, Dallas Gold & Silver Exchange (DGSE) has been the premier address in North Texas for buying and selling precious metals, as well as an exceptional retailer for diamonds, fine jewelry and luxury watches.SITE: www.dgse.com Address : 13022 Preston Rd. Dallas, TX 75240 USAALL DATA SIZE: ~350gb 1. Personal users confidential documents 2. Company data 3. Accounting & etc…

Victim:   |  Group: 
US flag

bulwarkpestcontrol.com 

Company logo
Ransomware Group:

Discovery Date: 2024-03-27 19:26
Estimated Attack Date: 2024-03-13

At Bulwark Exterminating, customers mean the world to us. As a family-owned business, we’re committed to keeping your household bug-free and happy with innovative, personalized pest control solutions. We make it a point to listen to your concerns and learn about your property, so we can provide the very best service possible. Unlike some corporate brands, we train our technicians to exceed expectations with every interaction. We believe that going the extra mile is the best way to do business because that’s what we would want for our families too. Are creepy crawlies making you lose sleep? The Bulwark Barrier keeps them at bay night and day.SITE: www.bulwarkpestcontrol.com Address : PO BOX 151 Queen Creek AZ 85142ALL DATA SIZE: ~ 155gb 1. Company data 2. Contracts and agreements & etc…

Victim:   |  Group: 
US flag

lagunitas.com 

Company logo
Ransomware Group:

Discovery Date: 2024-03-27 19:25
Estimated Attack Date: 2024-03-12

The Lagunitas Brewing Company began on a kitchen stove in Northern California in 1993 and has been crafting hop-forward beers ever since. Welcoming the open-minded with open taps and simple truths: Beer Speaks (for itself), Life Is Uncertain (don’t sip), and It’s Good To Have Friends. To quote our BrewMonster, “Lagunitas is made up of all kinds and creeds; punk rockers, misfits, ivy leaguers, weirdos, Waldos, Sparkle Ponies, Musicians, and everything in between … Just a pack of stray dogs that found—despite our vast and wild differences—that the love and respect for the freedom to be different is what brought us together and made it all work.” Whether we’re supporting local communities by turning beer into money for the cause, or simply fueling stories and songs with IPA and other creations—we always have a spot for you at our bar. Come as you are. And bring your dog, too. Here’s how it all really happened, or at least how we remember it. Heck… we don’t remember a lot, so this is at least how we thought it might have gone or something…SITE: www.lagunitas.com Address : 1280 N. McDowell Boulevard Petaluma, Calif. 94954 USAALL DATA SIZE: ~700gb 1. All data company 2. Users personal data & etc…

Victim:   |  Group: 
US flag

carolinafoodsinc.com 

Company logo
Ransomware Group:

Discovery Date: 2024-03-27 19:25
Estimated Attack Date: 2024-03-12

CAROLINA FOODS INC., creator of one of America’s first honey buns and the Duchess brand, is a sweet goods bakery located in Charlotte, North Carolina. For decades, our customers have enjoyed our honey buns, donuts, pastries and pies. Our products bring families together for breakfast, snacks, and on holidays and special occasions. At Carolina Foods, we make all of our products using the finest ingredients, blended in house to ensure that we have superior taste and quality. Once you taste our treats you will come back wanting more. Product quality is our number one priority, and we go to great lengths to ensure that our products are recognized as the “best in class” in their respective categories. Every day we strive to create a product that is loved by many. Quality, taste, and value bring our customers back for more. Honey buns are one of our many specialties, and while there are many brands on the market today, we challenge you to find one that tastes better than ours. Once you bite into a delicious, melt in your mouth Duchess honey bun, you will never buy another brand.SITE: www.carolinafoodsinc.com Address : 1807 SOUTH TRYON STREET CHARLOTTE, NC 28203 USAALL DATA SIZE: ~450gb 1. All data company 2. Users personal data 3. Accounting & etc…

Victim:   |  Group: 
DE flag

ero-etikett.com 

Company logo
Ransomware Group:

Discovery Date: 2024-03-27 19:24
Estimated Attack Date: 2024-03-13

ERO-ETIKETT® Wir sind echte Spezialisteninnen in Sachen Etiketten. Für die Lebensmittel-Branche, für Chemie, für Industrie und Logistik. Wir lieben Etiketten, sind professionell, flexibel, schnell und von ganzem Herzen bodenständig schwäbisch. Wir fertigen maßgeschneidert Lebensmittel Etiketten, Logistik-Etiketten oder Etiketten ganz nach Ihren Wünschen und Anforderungen. Bei uns gibt es beste Qualität, hergestellt im wunderschönen Süden Deutschlands. ERO-ETIKETT® ist in verschiedenen Branchen zu Hause. Wir produzieren für die Lebensmittelindustrie ebenso wie für Chemie, Industrie und Logistik. Jede Branche hat eigene Anforderungen und Vorgaben. Wir kennen uns aus, wissen was zu tun ist und garantieren Ihnen fachkundige Beratung, hohe Qualität und schnelle, termingerechte Lieferung!SITE: www.ero-etikett.com Address : ERO-ETIKETT® GmbH Oberer Sand 10-14,Lenningen GermanyALL DATA SIZE: ~400gb 1. Buhaltung 2. Firm daten 3. Persönliche Dokumente der Mitarbeiter & etc…

Victim:   |  Group: 
US flag

amerlux.com 

Company logo
Ransomware Group:

Discovery Date: 2024-03-27 19:23
Estimated Attack Date: 2024-03-13

Amerlux, a wholly-owned subsidiary of Delta Electronics, has been a catalyst for change in the lighting industry since 1984—simply by listening to the marketplace. We don’t keep up with industry trends. We set them. We believe lighting is as much about “feeling” as it is about “seeing.” Our solutions deliver the five elements that exceed today’s expectations: rich color, next-level comfort, total control, easy configurability and “capture” to provide added security. We believe in building long-term relations with all our stakeholders, including architects, lighting designers, facility managers and contractors. We understand your goals and problems, then rise to the challenge by offering an array of the most magnificent, top-end lighting solutions in the world—backed by iron-clad guarantees, breathtaking savings and unparalleled service—at a cost-effective price. Our award-winning portfolio includes innovative interior and exterior lighting products that deliver striking aesthetics, unmatched rendering and superior performance through advanced engineering and connectivity.SITE: www.amerlux.com Address : 178 Bauer Drive Oakland, NJ 07436 USAALL DATA SIZE: ~790gb 1. Company data 2. Drawings & Engeneering 3. Users personal folders and docs & etc…

Victim:   |  Group: 
US flag

organizedliving.com 

Company logo
Ransomware Group:

Discovery Date: 2024-03-27 19:23
Estimated Attack Date: 2024-03-13

Organized Living is the industry-leader of high-quality home storage and organization products. With our full breadth of product lines, we make storage for every area of the home easy. The Organized Living legacy focuses on leveraging technology and innovation to address trends in the building industry.SITE: www.organizedliving.com Address : Organized Living 3100 East Kemper Road Cincinnati, OH 45241 USAALL DATA SIZE: ~620gb 1. Company data 2. Accounting 3. HR 4. Users 5. Engineering & etc…

Victim:   |  Group: 
US flag

mjcelco.com 

Company logo
Ransomware Group:

Discovery Date: 2024-03-27 19:22
Estimated Attack Date: 2024-03-19

MJ Celco proudly employs 225 talented employees and has 255,000 total square feet of manufacturing space across our locations. To be the best metal stamping and fabricating company, delivering unmatched quality, fair prices, and excellent customer service.SITE: www.mjcelco.com Address : 3900 Wesley Terrace Schiller Park, IL 60176 USA Tel# 847-671-1900ALL DATA SIZE: ~1.2tb 1. Projects, Engineering, Drawings 2. Financial data 3. employees personal folders & etc…

Victim:   |  Group: 
US flag

kmbdg.com 

Company logo
Ransomware Group:

Discovery Date: 2024-03-27 19:21
Estimated Attack Date: 2024-03-19

Sector: Construction
KMB is a full service engineering solutions provider licensed in the US and Europe developing comprehensive solutions for our clients.SITE: www.kmbdg.com Address : 1800 State Rte 34 Ste 209 Belmar, NJ, 07719 USAALL DATA SIZE: ~1.5tb 1. Projects (current and old) 2. Accounting 3. Users (employees personal folders and documents) & etc…

Victim:   |  Group: 
US flag

pctinternational.com 

Company logo
Ransomware Group:

Discovery Date: 2024-03-27 19:21
Estimated Attack Date: 2024-03-19

PCT International Inc. is a privately owned company serving a segment of the global telecommunications infrastructure. The Company manufactures coaxial cable and connectors with its proprietary technology for homes and businesses. PCT International serves customers worldwide.SITE: www.pctinternational.com Address : PCT International, Inc. at Arizona State Research Park 7855 S. River Parkway, Suite 222. Tempe, AZ 85284. USA. Tel# 480.813.0925ALL DATA SIZE: ~ 700gb 1. Users data (personal employees documents +) 2. HR 3. Finance data 4. Personal and departments data, confidential data & etc…

Victim:   |  Group: 
US flag

theshootingwarehouse.com 

Company logo
Ransomware Group:

Discovery Date: 2024-03-27 19:20
Estimated Attack Date: 2024-03-06

Sports South is a family company and these values permeate its culture to all its employees and its customers. Hard work, education, and hands-on involvement, along with the assured well-being and livelihood of hundreds of employees, reinforce the company’s dedication to its origin. As the country’s oldest and largest distributor of firearms, ammunition, and accessories, Sports South maintains its leadership position through the relentless pursuit of new ideas and new thinking to drive long-term success and growth. With the nation’s largest concentration of shooting sports inventory from all the leading manufacturers under one roof, Sports South can deliver unmatched distribution services to its customers.SITE: www.theshootingwarehouse.com Address : Sports South, LLC 101 Robert G. Harris Dr Shreveport, LA 71115 USAALL DATA SIZE: ~800gb 1. Department data 2. Human Resources 3. Accounting, payroll 4. Personal data & etc…

Victim:   |  Group: 
CA flag

flynncompanies.com 

Company logo
Ransomware Group:

Discovery Date: 2024-03-22 11:51
Estimated Attack Date: 2024-03-05

Sector: Construction
Flynn was founded in 1978 in Winnipeg, Canada. In our early years, Flynn’s focus was on commercial roofing contracting. We established a reputation across Canada as a top-notch commercial roofing contractor. As architectural products became increasingly complex over the years, we recognized that the best way to serve our clients was by providing them with products and services for the entire building envelope. We branched out to provide a range of architectural products and roofing services, including metal paneling, contract glazing and curtain wall. Today, Flynn employs over 6000 people and serves a diverse portfolio of clients across North America, for the entire building envelope.SITE: www.flynncompanies.com Address : 6435 Northwest Dr Mississauga, ON L4V 1K2 CanadaALL DATA SIZE: ~4.0tb 1. Private (Personal users confidential folders and documents) 2. Company data & etc…

Victim:   |  Group: 
US flag

igf-inc.com 

Company logo
Ransomware Group:

Discovery Date: 2024-03-20 17:48
Estimated Attack Date: 2024-02-08

IGF services a variety of food industry businesses throughout the Mid-Atlantic, Southeast, and Midwest United States via all-temperature trucks. Our customers include restaurants, gourmet markets, clubs, caterers, bakeries, breweries, wineries, and hotels. With low order minimums, late order cut offs, and knowledgeable service, IGF makes customers its top priority. Established in 1987, International Gourmet Foods leads in wholesale distribution of gourmet specialty food products, providing high quality, innovative items from around the world. In addition, IGF carries a vast selection of expertly sourced commodity items with excellent value. IGF was founded by Maurizio DiBenigno in 1987. A life-long passion for quality products, fine tasting foods, and a wealth of experience in the food service industry inspired the principles on which Maurizio has built this company. His commitment to the needs and desires of his clients and his determination to source products of quality and value built the reputation of IGF as one of the premier gourmet food import and distribution companies in the industry. From its conception, IGF was and still is a family-owned and operated business founded on solid values and guiding principles that we continue to grow and develop. In December of 2019, Christine DiBenigno became president of IGF after 19 years of experience in the company. She and Maurizio continue to expand the company vision of not only quality food and excellent service, but also growing and enriching a diverse employee base. On March 29, 2021, IGF broke ground on a new state-of-the-art facility in Woodbridge, Virginia. This new central headquarters is scheduled to open in 2022.SITE: www.igf-inc.com Address : 7520 Fullerton Rd. Springfield, VA, 22153 Unated StatesALL DATA SIZE: ~155gb 1. Personal employees documents 2. HR 3. Financial Tax Payroll data and etc…

Victim:   |  Group: 
US flag

logistasolutions.com 

Company logo
Ransomware Group:

Discovery Date: 2024-03-20 17:47
Estimated Attack Date: 2024-02-26

Logista Solutions From our founding in 1983, Logista has grown to be a nationally recognized leader in a broad range of technology management solutions. Today, Logista Solutions is one of the largest technology support providers in the United States. We are trusted by Fortune 1000 corporations and vertical market leaders to provide innovative and structured IT support solutions and systems integration.SITE: www.logistasolutions.com Address : 5911 Greenwood Pkwy, Bessemer, Alabama, 35022, United StatesALL DATA SIZE: ~455gb 1. Department Data 2. Users Data 3. Personal employees information 4. Personal documents and etc…

Victim:   |  Group: 
US flag

oceaneering.com 

Company logo
Ransomware Group:

Discovery Date: 2024-03-20 17:46

Oceaneering provide engineered services and products primarily to the offshore energy industry. Today, we also use applied technology expertise to serve the defense, entertainment, material handling, aerospace, science, and renewable energy industries.SITE: www.oceaneering.com Address : Oceaneering International, Inc. 5875 N. Sam Houston Pkwy. W. Suite 400. Houston, Texas, 77086 USAALL DATA SIZE: ~300gb 1. Company data files, financial data 2. Drawings & Engeneering 3. Users personal folders and docs 4. Confidential agrements, dwg files & etc…

Victim:   |  Group: 
CH flag

interluxury.com 

Company logo
Ransomware Group:

Discovery Date: 2024-03-20 10:14
Estimated Attack Date: 2024-02-23

ILG is one of the world’s leading fashion and lifestyle accessories companies, possessing a portfolio of internationally renowned licensed brands distributed worldwide. ILG is a recognized leader in the watchmaking market and an established player in the branded eyewear, jewelry and leather goods markets.SITE: www.interluxury.com Address : 3c Bahnhofpl., Aarau, Aargau, 5000, SwitzerlandALL DATA SIZE: ~1tb 1. Benutzer data 2. Buchhaltung 3. Firmen 4. Personal 5. Design and etc…

Victim:   |  Group: 
US flag

activeconceptsllc.com 

Company logo
Ransomware Group:

Discovery Date: 2024-03-18 13:30

Sector: Healthcare
At Active Concepts, we are aware of how nature can enhance one’s appearance and well-being. As a producer of specialized components for the personal care sector, we collaborate with our clients to discover, create, and implement fresh product concepts in order to help them accomplish their innovation objectives.SITE: www.activeconceptsllc.com Address : 107 Technology Dr, Lincolnton, NC 28092, United StatesALL DATA SIZE: ~1.01tb 1. Accounting 2. Personal employees data 3. HR 4. R&D and etc…

Victim:   |  Group: 
DE flag

gfad.de 

Company logo
Ransomware Group:

Discovery Date: 2024-03-14 11:55
Estimated Attack Date: 2024-02-16

Sector: Construction
In mehr als 40 Jahren hat sich die GFAD in vielfältigen IT-Geschäftsfeldern etabliert. Jahrzehntelang von enthusiastischen Inhabern geführt, setzen wir unser kontinuierliches Wachstum als managementgesteuerte Unternehmensgruppe fort. Was uns eint? Leidenschaft für IT und der absolute Wille, unsere Kunden mit innovativen und zeitgemäßen Lösungen zu überzeugen. Unter dem Dach der GFAD haben wir ein breites Spektrum an klassischen IT- und Cloud-Lösungen gebündelt. Wir installieren und betreuen komplette IT-Infrastrukturen bei unseren Kunden und entwickeln maßgeschneiderte IT-Managementsysteme. Für die Immobilienwirtschaft haben wir eine führende Softwarelösung entwickelt und unterstützen unsere Kunden in allen Fragen rund um das Thema Datenschutz und IT-Security.SITE: www.gfad.de Address : Huttenstraße 34-35, 10553 Berlin, GermanyALL DATA SIZE: ~455gb 1. Source codes 2. UserHome data 3. Firmen data 4. Finanz documents and etc…

Victim:   |  Group: 
BE flag

duvel.com | boulevard.com 

Company logo
Ransomware Group:

Discovery Date: 2024-03-12 23:44

Duvel Moortgat Brewery (Brouwerij Duvel Moortgat) is a Flemish family-controlled brewery founded in 1871 in Antwerp Province, Belgium. Its strong golden pale ale, Duvel, is exported to more than forty countries. Duvel is Brabantian, Ghent and Antwerp dialect for devil, the standard Dutch word being duivel. Other popular beers include Maredsous and Vedett.SITE: www.duvel.com Address : Breendonk-Dorp 58 2870 Puurs-Sint-Amands BelgiumFounded in 1989, Boulevard Brewing Company has grown to become the largest specialty brewer in the Midwest. Our mission is simple: to produce fresh, flavorful beers using the finest ingredients and the best of both old and new brewing techniques. Click the link to learn what drove Boulevard founder John McDonald, and how we got where we are today.SITE: www.boulevard.com Address : 2501 Southwest Boulevard Kansas City, MO 64108 USAALL DATA SIZE: ~1.0tb 1. Accounting 2. HR 3. Home users folders & etc…

Victim:   |  Group: 
US flag

xcelbrands.com 

Company logo
Ransomware Group:

Discovery Date: 2024-03-12 13:22
Estimated Attack Date: 2024-02-22

Xcel Brands Inc is a media and brand management company. It is engaged in the design, merchandising and planning, sourcing and production, licensing, marketing, and brand development. The company offers branded apparel, footwear, accessories, jewelry, home goods, and other consumer products.SITE: www.xcelbrands.com Address : XCEL Brands 1333 Broadway, 10th Floor New York, NY 10018 USAALL DATA SIZE: ~2.5tb 1. Staff folders (personal documents) 2. Accounting 3. Company data 4. HR 5. Executive 6. Private Scan, UserData and etc…

Victim:   |  Group: 
SE flag

cpacsystems.se 

Company logo
Ransomware Group:

Discovery Date: 2024-03-12 13:22
Estimated Attack Date: 2024-02-21

Sector: Technology
Cpac Systems AB develops, manufactures, and markets safety electronic control systems for vehicles. The Company provides maneuverability, vehicle communication, hybrid control systems, safety critical vehicle control systems, connectivity, and power management for on land and sea vehicles. Cpac Systems engages in services in Sweden and internationally.SITE: www.cpacsystems.se Address : Bergskroken 3 431 37 Mölndal SwedenALL DATA SIZE: ~1tb 1. Financial data 2. Users Data 3. employees information and etc…

Victim:   |  Group: 
DE flag

elmatic.de 

Company logo
Ransomware Group:

Discovery Date: 2024-03-12 13:21
Estimated Attack Date: 2024-02-20

Sector: Technology
[EN] 1) Planning, construction, maintenance, repair and renovation of building and production facilities. - Energy and building management for commercial and residential buildings. - Planning, construction, operation and monitoring of fully automatically controlled production plants. - Development and manufacture of thermal apparatus and equipment for measuring, control and regulation technology. 2) The Company is entitled to acquire other companies, to participate in such, to take over their representation and to establish further branches. The other branches can be operated under companies that contain the addition: “Zweigniederlassung der ELMATIC GmbH”, in particular a branch under the company Jung moderne Haustechnik Zweigniederlassung der ELMATIC GmbH can be operated.[DE] Ob Brenner, Heizungsanlage oder Lüftungs- und Klimatechnik: In allen gebäudetechnischen Bereichen lassen sich durch maßgeschneiderte Wartungs- und Überwachungskonzepte die Kosten senken. Etwa 15.000 Kunden in ganz Deutschland vertrauen dabei dem erfahrenen Service von ELMATIC. Unsere breite Angebotspalette gibt Ihnen die Möglichkeit, für jedes Gebäude ein maßgeschneidertes Dienstleistungskonzept zusammenzustellen.SITE: www.elmatic.de Address : Arndtstraße 18-20, 22085 Hamburg GermanyALL DATA SIZE: ~2tb 1. Mitarbeiter dated 2. Agrements 3. Firm dated 4. FiBu and etc…

Victim:   |  Group: 
US flag

keystonetech.com 

Company logo
Ransomware Group:

Discovery Date: 2024-03-12 13:20
Estimated Attack Date: 2024-02-29

Sector: Technology
Since our inception in 1945, we’ve been dedicated to belief that lighting should be simple, hassle-free, and enjoyable: Light Made Easy®. We were founded by two WWII vets eyeing the possibilities of fluorescent lighting. We have grown into a company with thousands of SKUs featuring the latest LED and wireless technology. Through it all, we’ve never stopped learning and never stopped reinventing ourselves. We continue to create products with distinctive and intuitive features and back them up with top-notch service. After more than 75 years in business, we remain dedicated to our mission: Light Made Easy.SITE: www.keystonetech.com Address : Keystone Technologies 2750 Morris Rd Lansdale, PA 19446 USAALL DATA SIZE: ~550gb 1. Accounting 2. Financial data 3. HR 4. IT 5. Scans 6. Users folders, personal documents employees & etc…

Victim:   |  Group: 
US flag

dutyfreeamericas.com 

Company logo
Ransomware Group:

Discovery Date: 2024-03-12 13:20
Estimated Attack Date: 2024-02-28

Duty Free Americas (DFA) is the leading travel retailer in the Western Hemisphere offering Duty free-tax free products. DFA operates over 200 stores located in airports and at border crossings offering an extensive selection of world known brands including perfumes, cosmetics, wines, spirits, tobacco, edibles, luxury leather goods, watches, jewelry, sunglasses, and travel exclusive merchandise.SITE: www.dutyfreeamericas.com Address : 6100 Hollywood Blvd, Hollywood, Florida 33024, USTel.# (954) 986-7700ALL DATA SIZE: ~1.5tb 1. Accountings 2. Financial data 3. Human Resources 4. Legal 5. Home folders and Personal users, employees data & etc…

Victim:   |  Group: 
US flag

sierralobo.com 

Company logo
Ransomware Group:

Discovery Date: 2024-03-12 13:19
Estimated Attack Date: 2024-02-23

Sector: Technology
Sierra Lobo, Inc. specializes in providing test, evaluation and engineering services to the aerospace sector nationwide. We also offer in-house engineering and R&D services through our Technology Development and Engineering Center (TDEC) in northern Ohio.SITE: www.sierralobo.com Address : 102 Pinnacle Drive Fremont, OH 43420 USALL DATA SIZE: ~1.5tb 1. Accounting 2. Personal employees documents 3. Payroll 4. Projects and much more…

Victim:   |  Group: 
GB flag

contechs.co.uk 

Company logo
Ransomware Group:

Discovery Date: 2024-03-12 13:19

Sector: Construction
Contechs is a strategic partner to the automotive industry, providing innovative design and engineering services to global OEMs, from concept to production.SITE: www.contechs.co.uk Address : 2 Sable Court Sylvan Way, Southfields Business Park, Basildon, Essex SS15 6SRALL DATA SIZE: ~1.5tb 1. Accounting 2. Company data 3. HR 4. Design Projects 5. Personal documents employees & etc…

Victim:   |  Group: 
US flag

creativeenvironments.com 

Company logo
Ransomware Group:

Discovery Date: 2024-03-12 13:18
Estimated Attack Date: 2024-02-27

Sector: Construction
Creative Environments prides itself in providing cutting-edge professional landscape design services for residential and commercial setting. We build quality outdoor living environments and ensure on-time production, while remaining committed to customer service and customer satisfaction.SITE: www.creativeenvironments.com Address : 8920 S Hardy Dr, Tempe, Arizona, 85284, United StatesPhone Number. (480) 777-9305ALL DATA SIZE: ~2.5tb 1. Accounts 2. Customer Files 3. Human Recources 4. Personal users folders 5. Payroll & etc…

Victim:   |  Group: 
US flag

linksunlimited.com 

Company logo
Ransomware Group:

Discovery Date: 2024-03-12 13:17
Estimated Attack Date: 2024-03-01

Links Unlimited offers a full range of services, from product fulfillment to complete end-to-end solutions for your unique incentive program.SITE: www.linksunlimited.com Address : 1101 Regina Graeter Way, Cincinnati, OH 45216, United StatesALL DATA SIZE: ~500gb 1. Company-Data 2. Users Shared Data 3. Accounting 4. 401k 5. Payrolls 6. Personnel Files & etc…

Victim:   |  Group: 
US flag

imperialtrading.com 

Company logo
Ransomware Group:

Discovery Date: 2024-03-12 13:17
Estimated Attack Date: 2024-03-07

C.H. Pelias, a Greek immigrant, founded Imperial Trading in 1916 as a wholesale grocer for independent retail stores in New Orleans. The 3rd generation family business is owned by John Georges and led by President Wayne Baquet, Jr. For over 100 years, our visionary leadership and committed workforce have provided unmatched service and results in the convenience store industry.SITE: www.imperialtrading.com Address : 701 Edwards Ave Elmwood, LA 70123 USATel.# 800-775-4504ALL DATA SIZE: ~500gb 1. Accounting 2. Executive 3. Human Resources & etc…

Victim:   |  Group: 
AU flag

hvd.host 

Company logo
Ransomware Group:

Discovery Date: 2024-02-29 22:17
Estimated Attack Date: 2024-02-22

Sector: Technology
Hosted Companies australiantextiles.com.au ausweave.com.au bartgroup.com.au bruck.com.au opt.net.au wilsonfabrics.com knoxbridge.com.au novaemployment.com.au primrose.co.uk xenit.com.au advancedcs.com.au therose.pub localbar.com.auALL DATA SIZE: ~700gb 1. Accountings 2. Financial data 3. Personal employees documents 4. Legal & etc…

Victim:   |  Group: 
IN flag

goodinabernathy.com 

Company logo
Ransomware Group:

Discovery Date: 2024-02-29 14:44
Estimated Attack Date: 2024-02-20

Indianapolis Law Firm Goodin Abernathy LLP – Aggressively representing Indiana clients Since 1984 – with a strong focus on Personal Injury, Workers Comp & Employment LawSITE: www.goodinabernathy.com Address : 301 E 38th St, Indianapolis, IN 46205ALL DATA SIZE: ~455gb 1. Personal employees data 2. Confidential Agrements 3. Cases data 4. Company + Users data folders and etc…

Victim:   |  Group: 
GB flag

scullionlaw.com 

Company logo
Ransomware Group:

Discovery Date: 2024-02-29 14:44
Estimated Attack Date: 2024-02-16

Scullion Law: We are an award-winning law firm, known for our expertise and exceptional service. We prioritise the happiness and training of our people, ensuring exceptional results. By building trust and exceeding expectations, we consistently rank as the top-rated law firm in Glasgow and the West of Scotland.SITE: www.scullionlaw.com Address : 105 Cadzow Street Hamilton ML3 6HG Unated KingdomALL DATA SIZE: ~155gb 1. Company data 2. Personal employees data 3. Personal documents users and clients 4. Confidential documents and etc…

Victim:   |  Group: 
CH flag

fcw.ch 

Company logo
Ransomware Group:

Discovery Date: 2024-02-29 14:43
Estimated Attack Date: 2024-02-15

Sector: Technology
Franz Carl Weber ist seit über 140 Jahren die unangefochtene Nummer eins unter den Schweizer Spielwarenspezialisten und gehört zu den ältesten Spielwarenbrands weltweit. Der Name Franz Carl Weber steht für ein umfassendes, erlesenes Sortiment an Kinderspielwaren und Freizeitartikeln, aber auch für hohe Beratungskompetenz, ausgeprägtes Kundenbewusstsein und Innovationsgeist.SITE: www.fcw.ch Address : 4 Gallusstrasse, Zürich, Zurich, 8006, SwitzerlandALL DATA SIZE: ~705gb 1. Personal employees folders and documents 2. Company data 3. Accounting 4. Allgemeins 5. HR and etc…

Victim:   |  Group: 
US flag

haas4.com 

Company logo
Ransomware Group:

Discovery Date: 2024-02-29 14:42
Estimated Attack Date: 2024-02-14

Haas Inc. is an experienced concrete, aggregate, excavation and trucking company in Central Wisconsin. For more than 55 years we have been a proud family owned business.SITE: www.haas4.com Address : 203 E. Birch St Thorp, WI 54771 USAALL DATA SIZE: ~498gb 1. Company data 2. Personal employees data 3. projects 4. Confidential documents and etc…

Victim:   |  Group: 
US flag

alanritchey.com 

Company logo
Ransomware Group:

Discovery Date: 2024-02-29 14:42
Estimated Attack Date: 2024-02-06

Alan Ritchey, Inc. (ARI) is a family owned and operated, multi-industry company that provides services to the government, industrial, agriculture, energy and transportation sectors. We have been serving other businesses for over 50 years. The ARI logo can be seen from the Atlantic to the Pacific. Our mission is to provide experienced personalized solutions while offering an unparalleled combination of quality, service, reliability and value that allow our clients to achieve their goals.SITE: www.alanritchey.com Address : 740 S Frontage Rd Valley View, Texas 76272-9733 Unated States 940-726-3276 800-877-0273ALL DATA SIZE: ~255gb 1. USERS 2. Accounting 3. Legal 4. HR Files and etc…

Victim:   |  Group: 
CH flag

team.jobs 

Company logo
Ransomware Group:

Discovery Date: 2024-02-22 19:19
Estimated Attack Date: 2023-12-15

[EN] Das Team Ag is a company that operates in the Staffing and Recruiting industry. It employs 101-250 people and has $25M-$50M of revenue. [DE] Unser Kerngeschäft liegt in der Vermittlung und im Verleih von Personal im Bauhaupt- und Baunebengewerbe, Handwerk, Industrie, Technik und Medical & Care. Seit 1987 auf dem Markt, ist die personalberatung das team ag eine Stellenvermittlung mit qualifizierten Personalberatern und ausgewiesenen Branchenkennern.SITE: www.team.jobs Address : 2 Innere Margarethenstrasse, Basel, Basel-City, 4002, SwitzerlandALL DATA SIZE: 202gb 1. Kunden 2. HR 3. BuHa 4. Personal documents and etc…

Victim:   |  Group: 
US flag

nfllp.com 

Company logo
Ransomware Group:

Discovery Date: 2024-02-22 11:41
Estimated Attack Date: 2024-02-09

New York Law Firm with a National Presence When the partners at some of New York’s largest law firms need assistance with New York’s arcane real estate law, or when investors, consumers, and those who have suffered civil rights violations require aggressive representation, they go to Newman Ferrara. With over five decades of experience at its disposal, Newman Ferrara has evolved into a national practice focused on Real Estate, Commercial Litigation, Civil Rights, Class Actions and other Complex, Multiparty Litigation. In addition to teaching at law schools and universities, lecturing at CLE programs and co-authoring some of the state’s leading practice treatises, the firm’s attorneys are regularly called upon by the media to offer their unique insights on the latest legal developments and trends. Newman Ferrara represents many of the city’s largest property owners and managing agents, and handles some of the nation’s most significant class actions and civil rights matters. Whether it involves the purchase or sale of real property, or representing litigants in convoluted disputes, the firm’s lawyers work diligently to get the job done and endeavor to do so in an expeditious and cost-effective manner. Offering a comprehensive and multifaceted range of services, as well as a targeted approach to their clients’ needs, Newman Ferrara provides big-firm quality without compromising the personal attention clients expect and deserve. Newman Ferrara remains committed to pursuing socially meaningful cases and will prosecute them in the most efficient manner and with the highest level of professional competence. The boutique structure of our firm allows us to provide clients with personalized attention and increased access to their attorneys and, when appropriate, Newman Ferrara works in conjunction with a network of counsel, nationwide.SITE: www.nfllp.com Address : 1250 Broadway, 27th Floor New York, NY 10001ALL DATA SIZE: ~835gb 1. Home employees folder with peresonal documents 2. Corporate data 3. Financial data 4. SSNs, Passports, Imsuranses clients 5. alldata folder 6. securecopy, scans and etc…

Victim:   |  Group: 
US flag

climatech.com 

Company logo
Ransomware Group:

Discovery Date: 2024-02-22 11:41
Estimated Attack Date: 2024-02-09

Sector: Technology
Commercial / Residential HVAC provider Climatech Inc, is a large full-service mechanical contracting company serving customers in both Pittsburgh, PA and Tampa, FL. Over the past 40 years we have grown into one of the largest contractors for heating, ventilation, air conditioning and refrigeration in Pittsburgh, which is directly attributable to our attitude in providing the highest level of quality in all that we do.SITE: www.climatech.com Address : Climatech, Inc. 200 Bilmar Dr Pittsburgh, PA 15205 412-921-8000ALL DATA SIZE: ~550gb 1. Employees folders and documents 2. Human resources 3. Accounting and finance data 4. Payroll and etc…

Victim:   |  Group: 
US flag

usmerchants.com 

Company logo
Ransomware Group:

Discovery Date: 2024-02-22 11:40
Estimated Attack Date: 2024-02-13

US Merchants is a vertically integrated packaging and distribution company. We purchase raw packaging materials and then use those ingredients to manufacture finished packaging products. Everything involved in producing and delivering clamshell blister packaging, two-piece blister packaging, blister cards, and our retail molded plastic products is done in-house from start to finish. This vertical operation reduces costs and helps to insulate suppliers, retailers, and end-customers from the reliability problems that result in more horizontal supply chains.SITE: www.usmerchants.com Address : Corporate Headquarters 8737 Wilshire Blvd Beverly Hills, CA 90211ALL DATA SIZE: ~245gb 1. Corporate documents 2. Employees folders 3. Payroll 4. Scans 5. HR / Accounting / Financial data and etc…

Victim:   |  Group: 
GB flag

birchallfoodservice.co.uk 

Company logo
Ransomware Group:

Discovery Date: 2024-02-22 11:40
Estimated Attack Date: 2024-02-08

Birchall Foodservice is a wholesale food supplier built on strong family values for over 80 years. We are a fifth generation family business with quality products and supreme customer service at the forefront of our offering.SITE: www.birchallfoodservice.co.uk Address : Birchall Foodservice Cobalt House Magnesium way Burnley Bridge Business Park Hapton, Burnley Lancashire BB12 7BF TEL: 01282 429446ALL DATA SIZE: ~DW:405gb 1. Company data 2. ACCOUNTS 3. HR 4. Payroll 5. Personal users(employees) folders, files and etc…

Victim:   |  Group: 
US flag

dilweg.com 

Company logo
Ransomware Group:

Discovery Date: 2024-02-22 11:39
Estimated Attack Date: 2024-02-08

At Dilweg, consistent refinement of our practices has created unparalleled results. Today, our adaptable strategy and exceptional service are defining the future of real estate investment. Read below to discover what we are made of. To adapt to the contemporary economy, we have deliberately focused our recent efforts on acquiring properties in the Dallas, Atlanta, Tampa, Charlotte, and Raleigh-Durham metropolitan areas. By centering on middle-market assets, we’ve developed lucrative opportunities for purposeful investors throughout the Southeast. Services: asset enhancement, property management, construction management, brokerage & leasing, tax & accounting, marketing & communications, capital markets and investor relations.SITE: www.dilweg.com Address : Corporate Office 5310 South Alston Avenue, Suite 210 Durham, NC 27713 PHONE: (919) 402-9100ALL DATA SIZE: ~DW:453gbgb 1. Financial data 2. Scans 3. Accountings, QBooks 4. Personal users files, documents 5. Onedrive Data and etc…

Victim:   |  Group: 
AU flag

zircodata.com 

Company logo
Ransomware Group:

Discovery Date: 2024-02-22 11:38
Estimated Attack Date: 2024-02-07

ZircoDATA is a market leader in Records and Information Management (RIM), providing secure document storage and records lifecycle solutions from information governance and digital conversion through to storage, language services and destruction since 1995. With world class Record Centres across Australia, our trusted team of industry experts support over 9000 customers. We deliver superior service and solutions that reduce risk and inefficiencies, securely protecting and managing our customers’ records and information 24 hours a day, every day of the year.SITE: www.zircodata.com Address : Australia Level 4 974 Nepean Highway Bentleigh VIC 3204ALL DATA SIZE: ~DW:395gb 1. Finance 2. IT 3. Public 4. RM / RMCorp 5. Personal users folders 6. Confidentiality & Non-Disclosure and etc…

Victim:   |  Group: 
CH flag

dasteam.ch 

Company logo
Ransomware Group:

Discovery Date: 2024-02-21 12:48

[EN] Das Team Ag is a company that operates in the Staffing and Recruiting industry. It employs 101-250 people and has $25M-$50M of revenue. [DE] Unser Kerngeschäft liegt in der Vermittlung und im Verleih von Personal im Bauhaupt- und Baunebengewerbe, Handwerk, Industrie, Technik und Medical & Care. Seit 1987 auf dem Markt, ist die personalberatung das team ag eine Stellenvermittlung mit qualifizierten Personalberatern und ausgewiesenen Branchenkennern.SITE: www.dasteam.ch Address : 2 Innere Margarethenstrasse, Basel, Basel-City, 4002, SwitzerlandALL DATA SIZE: 202gb 1. Kunden 2. HR 3. BuHa 4. Personal documents and etc…

Victim:   |  Group: 
GB flag

pacifica.co.uk 

Company logo
Ransomware Group:

Discovery Date: 2024-02-16 12:02
Estimated Attack Date: 2024-02-13

Pacifica. We supply vital services across the domestic appliances industry. Founded in 2003 and united under the Pacifica brand two years later, we’ve grown to become the largest domestic support services provider in the UK and a trusted name across Europe.SITE: www.pacificagroup.co.uk Address : Venter Bldg, Rainton Bridge Business Park, Pacifica House, The, 3 Mandarin Rd, Houghton le Spring DH4 5RA, UKALL DATA SIZE: ~850gb 1. Personal documents (passports\DL…) 2. Corporate data 3. Customers documents 4. Employees folders 5. HR and etc…

Victim:   |  Group: 
IN flag

barberemerson.com 

Company logo
Ransomware Group:

Discovery Date: 2024-02-13 22:26
Estimated Attack Date: 2024-02-06

Established in 1934 in Lawrence, KS the law firm of Barber Emerson, L.C. is one of the oldest and most respected law firms in the state of Kansas. Our practice specializes in the areas of General Civil Practice, Litigation, Corporation, Banking, Real Estate, Estate Planning, Probate, Taxation, Insurance, Workers Compensation and Zoning Law. The firm is committed to provide quality legal representation and is a member of the Bar Register of Preeminent Lawyers. The firm of Barber Emerson, L.C. carries the highest rating attainable by a firm according to Martindale Hubbell standards of excellence, and by peer review. Personal and professional integrity form the foundation of our values, and we are committed to the representation of our clients in accordance with these values. While we offer the specialized legal experience and expertise comparable to much larger firms, we also possess the personal service and practical business traits of a smaller firm.SITE: www.barberemerson.com Address : BARBER EMERSON, L.C.Downtown Lawrence 1211 Massachusetts Street Lawrence, KS 66044 785-843-6600ALL DATA SIZE: ~351gb 1. Personal users folders and documents 2. Corporate data 3. Customers documents and etc…

Victim:   |  Group: 
GB flag

ffppkg.co.uk 

Company logo
Ransomware Group:

Discovery Date: 2024-02-13 22:25
Estimated Attack Date: 2024-01-31

Constantia FFP We are a leading flexible packaging converter, supplying award-winning, innovative printed and plain films and laminates across a wide range of categories. For over 55 years our award-winning innovations have changed the landscape of flexible packaging within the food industry. We continually look to add value for our customers by developing new pack formats and new laminates to increase their sales, improve production line performance, reduce costs or move products into recyclable packaging solutions. We use our extensive material and print knowledge along with our technical expertise to develop practical, sustainable solutions that add value for our customers and functionality and convenience to consumers. Based in Northamptonshire, we are one of the very few flexible packaging converters that can offer a complete solution to your packaging requirements. From the initial design concept all the way through to final production, our team of industry experts take care of the entire process in-house.SITE: www.ffppkg.co.uk Address : Constantia FFP, Tenter Road, Moulton Park, Northampton, NN3 6PZALL DATA SIZE: 756gb 1. Departments data 2. Accounts 3. Engineering 4. Human Resources 5. Users Shared Folders, Documents and etc…

Victim:   |  Group: 
IT flag

patriziapepe.com 

Company logo
Ransomware Group:

Discovery Date: 2024-02-13 22:25
Estimated Attack Date: 2024-02-06

The passion of Patrizia Bambi (Creative Director) combined with the entrepreneurial spirit of Claudio Orrea (President), culminated in the creation of Patrizia Pepe. Florence, 1993. The name “Pepe” was immediately identified with an irreverent sensuality, made of contrasts and opposites. From this moment on, women could now recognise themselves in a brand which seamlessly combines everyday practicality with glamour for all those important moments, from morning to evening, thanks to the collection’s dual versatility and cutting silhouettes. A new idea of a woman, our woman, is brought to life: sensual, irreverent, courageous and self-aware. Conscious of her own body, she pursues a holistic vision of well-being. Ironic and urban, she loves to experiment. She brandishes a strong, independent spirit and is an idealist. In a short time, Patrizia Pepe proved itself capable of creating iconic garments of indisputable originality, recognisable and appreciated over the years.SITE: www.patriziapepe.comINFO: PATRIZIA PEPE Tessilform S.p.a. Registered office Via P. Gobetti 7/9 Campi Bisenzio (FI) 50013 - Italy VAT No. 01580850970 Share Capital € 1.000.000 fully paid-up Company registration number FI - 431485ALL DATA SIZE: ~577gb 1. Personal users folders and documents 2. Corporate data 3. Employees, recrut documents and etc…

Victim:   |  Group: 
DE flag

btl.info 

Company logo
Ransomware Group:

Discovery Date: 2024-02-13 22:24
Estimated Attack Date: 2024-02-06

Sector: Technology
BTL ist der Technikdienstleister innerhalb der BTL group und verantwortet seit über 35 Jahren erfolgreich die technische Ausstattung von Events aller Art. Von einer kleinen Expert:innenrunde bis zur großen Messe – wir liefern genau die Technik, die du benötigst. Unsere Fachleute sind ausgebildete Fachkräfte und Meister:innen ihres Gewerks. Damit liefern wir nicht nur technisch und fachlich „state of the art“, sondern auch ein erfahrenes und über die Jahre gewachsenes Team.SITE: www.btl.info Address : BTL Veranstaltungstechnik GmbH Bochumer Straße 89 D-40472 Düsseldorf T +49-211-90 449 – 0ALL DATA SIZE: ~585gb 1. Personal documents 2. Corporate data 3. Customers documents 4. Financial documents (FiBu) and etc…

Victim:   |  Group: 
US flag

globalrescue.com 

Company logo
Ransomware Group:

Discovery Date: 2024-02-13 22:23
Estimated Attack Date: 2024-02-02

Sector: Healthcare
Global Rescue (a Global Rescue Company) has been a leader and pioneer in the travel services industry since our founding in 2004. We provide the finest integrated medical, security, travel risk and crisis management services available anywhere, delivered by our teams of critical care paramedics, physicians, nurses and military special operations veterans. Our medical advisory and evacuation services include exclusive relationships with the Johns Hopkins Department of Emergency Medicine Division of Special Operations, Elite Medical Group and Partners HealthCare. Our track record has made us the chosen provider to government agencies and some of the world’s largest companies, universities, nonprofits and tour operators. Our mission is simple – to be there when it matters most.SITE: www.globalrescue.com Address : 85 MECHANIC ST, LEBANON, NH 03766 USAALL DATA SIZE: ~155gb 1. Personal documents 2. Acct 3. Public 4. Legal 5. HCM and etc…

Victim:   |  Group: 
US flag

ssmnlaw.com 

Company logo
Ransomware Group:

Discovery Date: 2024-02-13 22:23

Sanford, Pierson, Thone & Strean, PLC is a team of result-oriented creative problem solvers working to meet our client’s personal and business needs. Our goal is to help people and businesses have productive todays in pursuit of better tomorrows. Founded in 1995, Sanford, Pierson, Thone & Strean continues to evolve with clients in an ever-changing legal landscape. Our attorneys are licensed to practice law in Minnesota, Wisconsin, North Dakota, and the U.S. District Courts of Minnesota, Western Wisconsin, and Eastern Wisconsin. We provide legal services in the areas of Business and Corporate Law, Litigation, Estate Planning & Probate, Trustee Services and Real Estate. Sanford, Pierson, Thone & Strean is located in Wayzata, Minnesota.SITE: www.ssmnlaw.com Address : 1905 East Wayzata Blvd., Suite 220 Wayzata, MN 55391 USAPhone: 952-404-2100​ALL DATA SIZE: 401gb 1. Business Data 2. ACCOUNTING 3. Budgeting Documents 4. HUMAN RESOURCES 5. Payroll 6. Users Shared Folders, Documents and etc…

Victim:   |  Group: 
US flag

leonardssyrups.com 

Company logo
Ransomware Group:

Discovery Date: 2024-02-13 22:22
Estimated Attack Date: 2024-01-30

Leonard’s Syrups. Proudly servicing Michigan since 1964. Celebrating 55 years in business, Leonard’s Syrups, a family-owned and operated company, has been a trusted supplier to bars, breweries, and restaurants – large and small – since its establishment in 1964. As a leading beverage gas, draft beer equipment, soda machine, and Coke syrup supplier in Detroit, Saginaw, and Grand Rapids, Leonard’s Syrups serves the diverse needs of businesses all over Michigan, cementing their legacy as a dependable partner in the foodservice industry for over five decades.SITE: www.leonardssyrups.com Address : 4601 Nancy St., Detroit, MI 48212 Unated States (313) 891-4141ALL DATA SIZE: 453gb 1. Leonard’s Documents 2. Human Resources 3. Financial data 4. Personal folders and documents and etc…

Victim:   |  Group: 
US flag

willislease.com 

Company logo
Ransomware Group:

Discovery Date: 2024-02-09 14:37
Estimated Attack Date: 2024-02-02

Willis Lease Finance Corporation has been a pioneer and provider of aviation services for over 45 years. Launched by founder Charles Willis with the then new and radical idea to lease jet engines to commercial airlines, WLFC has since purchased, leased, and sold more engines in more countries over a longer period of time than any independent competitor. We offer one of the broadest product lines in the industry, including engine types from all major manufacturers, lease terms to meet any operational need, engine pools and engine financing, sale leasebacks, forward purchases, finance leases and engine management. As a pioneer in establishing cooperative engine sharing pools, our North American CFM56-7B Engine Sharing Pool provides services for more than 600 aircraft and continues to be the market leader.SITE: www.willislease.com www.wlfc.global Address : 4700 Lyons Technology Parkway Coconut Creek, Florida 33073 USA Tel: +1 561.349.9989ALL DATA SIZE: 910gb 1. CompanyFolders 2. Executive 3. Finance-Acctg 4. Human-Resources 5. Customers 6. Personnel 7. Users Shared Folders, Documents 8. Confidentiality & Nondisclosure Agrs and etc…

Victim:   |  Group: 
DE flag

asecos.com 

Company logo
Ransomware Group:

Discovery Date: 2024-02-06 01:15

Asecos take great pride in assisting to create new safety standards and ultimately reducing the number and severity of accidents, through the use of approved asecos products. The best possible protection of humankind and the environment is our number one priority. Driven by this desire, we developed the first cabinet with a certified 90-minute fire resistance for the storage of flammable liquids in 1994. What was a technical revolution in the industry at that time has now become the technical standard across Europe and is gaining more and more acceptance overseas. Meeting minimum legal requirements, which were often set many years ago, is just not good enough for us. Our mission is to raise awareness globally and to develop storage solutions that are fit for the challenges of 21st century workspaces.SITE: www.asecos.com Address : asecos GmbH Safety and environmental Protection Weiherfeldsiedlung 16-18 63584 Gründau / Germany Phone: +49 6051 9220-0ALL DATA SIZE: 810gb 1. Allgemein data 2. Buchhaltung 3. Controlling 4. Personal 5. Home users folers, documents and etc…

Victim:   |  Group: 
US flag

sipicorp.com 

Company logo
Ransomware Group:

Discovery Date: 2024-01-26 16:35
Estimated Attack Date: 2023-12-22

Sector: Technology
Welcome to Sipi Corporation. Over the course of more than a century we have witnessed global economic highs and lows while maintaining a steady course to become a recognized leader in refining, recycling and reusing the world’s most valuable materials.SITE: www.sipicorp.com Address : Sipi Metals Corp. 1720 N. Elston Avenue Chicago, Illinois 60642-1579ALL DATA SIZE: 145gb 1. Users personal folders 2. ACCOUNTING 3. Corporate documents and etc…

Victim:   |  Group: 
US flag

leclairgroup.com 

Company logo
Ransomware Group:

Discovery Date: 2024-01-25 16:12

Sector: Healthcare
“Insurance Marketing” doesn’t exactly rhyme with “Madison Avenue.” Yet our business can be just as dynamic. That’s because helping you market insurance is not about selling cigarettes or skin cream but instead about building the brand called “you.” And no one gets you like LeClair. Built by brokers, for brokers, since 1931.SITE: www.leclairgroup.com Address : 6701 Upper Afton Road Saint Paul, MN 55125 UNITED STATES 651.739.2010FULL DATA SIZE: 1.5tb 1. Insurance 2. I-9 forms 3. 401K forms 4. Confidentiality

Victim:   |  Group: 
US flag

fairmontfcu.com 

Company logo
Ransomware Group:

Discovery Date: 2024-01-23 19:24
Estimated Attack Date: 2023-10-18

Fairmont Federal Credit Union is a not-for-profit financial organization, democratically controlled, owned, and operated by our members for the benefit of all who belong. We operate 9 regional branches with over 120 employees.SITE: www.fairmontfcu.com Address : PO Box 2139, Fairmont, West Virginia, 26555, USAALL DATA SIZE: 403gb 1. User data 2. Corporate data 3. Legal 4. Loans 5. Personal documents, scans and etc…

Victim:   |  Group: 
US flag

ktbslaw.com 

Company logo
Ransomware Group:

Discovery Date: 2024-01-23 17:53

KTBS Law LLP prides itself on the quality, responsiveness, and creativity of its attorneys, and has an outstanding record of delivering exceptional and cost-effective business solutions. From the most senior attorney to the most junior, KTBS lawyers are nationally recognized, for their talent, the results they achieve for their clients, and the manner in which they achieve those results, often under the most challenging of circumstances. Capitalizing on their depth of experience and creative approach to dealing with legal and business challenges, KTBS attorneys quickly assess even the most complicated situations, identify options, make recommendations, and immediately implement the course of action selected by their clients. Where action is required in court, our litigators aggressively advocate on behalf of clients, bringing to bear years of courtroom experience. Where the challenge is in the transactional arena, our corporate attorneys work equally hard to achieve the clients’ critical business objectives – and get the deal done timely and cost-effectively.SITE: www.ktbslaw.com Address : 1801 Century Park East 26th Floor Los Angeles, CA 90067-2328ALL DATA SIZE: 735gb 1. Finance 2. Users personal documents 3. Confidential 4. Accounting 5. Company data and etc…

Victim:   |  Group: 
FR flag

dupont-restauration.fr 

Company logo
Ransomware Group:

Discovery Date: 2024-01-23 17:52
Estimated Attack Date: 2023-12-12

Restauration collective, cuisine collective - Société Dupont RestaurationSITE: www.dupont-restauration.fr*** Address : *** 13 Avenue Blaise Pascal Pa Les Portes Du Nord, Libercourt, Hauts-de-FranceALL DATA SIZE: 540gb 1. COMPTABILITE 2. PERSONNEL 3. PERSONNEL DOCUMENTS and etc…

Victim:   |  Group: 
CA flag

kivibros.com 

Company logo
Ransomware Group:

Discovery Date: 2024-01-23 17:51
Estimated Attack Date: 2023-12-13

Kivi Bros. Trucking of Duluth, MN, is an experienced leader in the transportation industry and offers trucking logistics, heavy hauling, step decks, conestogas, and flatbed trailers. We serve the U.S. Nationwide including Alaska and Canada. Along with our Headquarters in Duluth, MN. We also have a terminal in Blaine, MN. and Harrodsburg, KY. Just outside of Lexington, KY.SITE: www.kivibros.com Address : 5739 OLD HWY. 61, DULUTH, MN 55810ALL DATA SIZE: 111gb 1. Human Resources 2. Payroll 3. Accounting and etc…

Victim:   |  Group: 
CA flag

haes.ca 

Company logo
Ransomware Group:

Discovery Date: 2024-01-23 17:51
Estimated Attack Date: 2023-12-13

Sector: Healthcare
High Arctic is an energy services provider. High Arctic is a market leader in Papua New Guinea providing drilling and specialized well completion services and supplies rental equipment including rig matting, camps, material handling and drilling support equipment. In western Canada High Arctic provides pressure control equipment on a rental basis to a number of exploration and production companies.SITE: www.haes.ca Address : 330 5th Ave SW Ste 2350, Calgary, Alberta, T2P 0L4, CanadaALL DATA SIZE: 345gb 1. Human Resources 2. Finance 3. Executive and Governance 4. Administration 5. Projects and etc…

Victim:   |  Group: 
US flag

cinfab.com 

Company logo
Ransomware Group:

Discovery Date: 2024-01-23 17:50
Estimated Attack Date: 2023-12-20

Established in 1981, CINFAB filled the need for a high-quality, competitively priced commercial HVAC sheet metal contractor. Since then, we’ve grown our operations to include a 40,000-square-foot full-service fabrication shop. And we’ve expanded our capabilities to meet the specific design, fabrication and installation needs of our customers. We’ve built our excellent reputation on the exceptional talent of our design, manufacturing and installation staff and more than 35 years of experience.SITE: www.cinfab.com Address : 5240 Lester Rd. Cincinnati, OH 45213 Unated States T: 513.396.6100 F: 513.396.7574ALL DATA SIZE: 1.1tb 1. Employee files 2. Users personal folders 3. Budgets 4. Projects and etc…

Victim:   |  Group: 
US flag

prudentpublishing.com 

Company logo
Ransomware Group:

Discovery Date: 2024-01-23 17:50
Estimated Attack Date: 2023-12-22

The Gallery Collection is the leading business-to-business online and mail order publisher of premium quality personalized Christmas, Holiday, and Everyday greeting cards in the United States. Established in 1929, and still family owned by Prudent Publishing Company, we are proud to present the finest quality personal and business greeting cards available. We guarantee it!SITE: www.prudentpublishing.com Address : 65 Challenger Rd, Ridgefield Park, New Jersey, 07660, United StatesALL DATA SIZE: 352gb 1. HR 2. User personal folders 3. Tax confidential forms and etc…

Victim:   |  Group: 
NZ flag

unitedindustries.co.nz 

Company logo
Ransomware Group:

Discovery Date: 2024-01-23 17:49
Estimated Attack Date: 2023-12-21

United Industries was founded in 1991 and today consists of a group of companies with an enviable reputation for being market leaders in the delivery of industrial, commercial and retail engineering and construction products. With an extensive investment in manufacturing plants and facilities, and a commitment to staying at the forefront of new and innovative technologies, United Industries is a trusted partner across a wide range of sectors nationwide.SITE: www.unitedindustries.co.nz Address : 30 Highbrook Drive, East Tāmaki, Auckland 2013, New ZealandALL DATA SIZE: 155gb 1. Personal users folders 2. Accounts 3. Finance and etc…

Victim:   |  Group: 
GB flag

stemcor.com 

Company logo
Ransomware Group:

Discovery Date: 2024-01-23 17:48

STEMCOR is a leading independently run service provider for the steel industry. We play a vital role, acting as an intermediary between customers and suppliers. We make complex transactions easy for buyers and sellers. With our specialised expertise and knowledge, we help customers choose from over 3,500 different grades of steel and raw materials available in the market. With our global infrastructure and connections, we ensure they get their product in the right place, at the right time, and at the right price. For suppliers, we use our relationships and long-standing expert knowledge to ensure that their products reach the best customer in the right destinations.SITE: www.stemcor.com Address : Stemcor Group Longbow House 4th Floor, 14-20 Chiswell Street London EC1Y 4TW United KingdomALL DATA SIZE: 1.2tb 1. Employee files 2. Finance 3. Accounting and etc…

Victim:   |  Group: 
FR flag

envea.global 

Company logo
Ransomware Group:

Discovery Date: 2024-01-23 11:42
Estimated Attack Date: 2023-12-11

ENVEA is leading provider of environmental management solutions for the protection of people and planet. We are committed to sustainable practices to ensure a greener and healthier future for all. We have been at the forefront of developing cutting-edge technologies and solutions to tackle pressing environmental issues. With a comprehensive range of products and services, we enable industries, governments, and communities to effectively monitor, control, and manage their environmental impact. We are a customer driven company where our technology, industry-leading expertise, and passion drives the development of innovative monitoring solutions that delivers your environmental goals in many industries, governments, and communities.SITE: www.envea.global Address : ENVEA UK ENVEA House, Rose and Crown Road, Swavesey CB24 4RB. CambridgeALL DATA SIZE: 70gb 1. Ressources Humaines 2. Compta 3. Commun 4. Contracts and etc…

Victim:   |  Group: 
JP flag

agc.com 

Company logo
Ransomware Group:

Discovery Date: 2024-01-22 19:35
Estimated Attack Date: 2023-12-17

Asahi Glass was founded on 8 September 1907 by Toshiya Iwasaki, the second son of the second president of the original Mitsubishi zaibatsu. It was the first Japanese producer of sheet glass. Asahi Glass Co. is one of the largest flat glass producing companies in the world, owning Glaverbel glass plants across Europe and AFG Industries in North America. It purchased AFG Industries in 1992.Wiki: en.wikipedia.org/wiki/AGC_Inc.SITE: www.agc.com Address : 1-5-1 Marunouchi, Tokyo, Tokyo, 100-8405, JapanALL DATA SIZE: 1.5tb 1. Users personal folers 2. Technology 3. Human Resources 4. Finance and etc…

Victim:   |  Group: 
GB flag

southernwater.co.uk 

Company logo
Ransomware Group:

Discovery Date: 2024-01-22 17:57

We provide water for life to enhance health and wellbeing, protect and improve the environment and sustain the economy. We provide essential water services to 2.5 million customers and wastewater services to more than 4.7 million customers across Sussex, Kent, Hampshire and the Isle of Wight.SITE: www.southernwater.co.uk Address : Southern Water Services Limited, Southern House, Yeoman Road, Worthing, West Sussex, BN13 3NX.ALL DATA SITE: 750gb 1. Users personal documents and folders 2. Corporate documents and etc…

Victim:   |  Group: 
DE flag

graebener-group.com 

Company logo
Ransomware Group:

Discovery Date: 2024-01-02 13:18
Estimated Attack Date: 2023-12-05

At Graebener® Bipolar Plate Technologies, we focus on the development, optimization and realization of the manufacturing technologies for the bipolar plate, the core of fuel cells and electrolyzers. As an elementary component of both the fuel cell and the electrolyzer stacks it helps, on the one hand, to generate clean electricity from hydrogen and air, and on the other hand, to convert electricity (e.g. from renewable energies) into hydrogen. This makes the fuel cell and the electrolyzer interesting not only for future mobility, logistics or the generation of electricity and heat for buildings, but also for numerous branches of industry, such as the steel, fertilizer and gas industries, which will depend on the production of large quantities of green hydrogen in the future. The bipolar plate is thus important for all applications of energy generation where environmental aspects, energy efficiency and sustainability are relevant.SITE: www.graebener-group.com* Address : * 1 Am Heller, Netphen, Nordrhein-Westfalen, 57250, GermanyALL DATA SIZE: 1.01tb 1. Allgemein 2. Controlling 3. Dokumentation 4. Vertieb 5. Home and privat users folders and etc…

Victim:   |  Group: 
US flag

leonardsexpress.com 

Company logo
Ransomware Group:

Discovery Date: 2024-01-02 13:18
Estimated Attack Date: 2023-12-05

Leonard’s Express is a family owned asset-based transportation provider located in Farmington, New York with offices located throughout the United States. We provide transportation solutions for a wide range of customers that encompass many industries. With our nationwide footprint of offices, we are prepared to tailor a solution to fit your specific supply chain needs. With our state of the art technology and our dedicated staff, Leonard’s Express is willing and able to provide you and your company with dependable, diversified and creative solutions that are responsive and cost-effective.SITE: www.leonardsexpress.com Address : 1360 County Rd, Farmington, New York, 14425, United StatesALL DATA SIZE: 182gb 1. Finance 2. Insurances 3. 1099 Info 4. Users personal documents: DL, SSN, passports and etc…

Victim:   |  Group: 
US flag

nals.com 

Company logo
Ransomware Group:

Discovery Date: 2024-01-02 13:17
Estimated Attack Date: 2023-12-05

Sector: Technology
NALS Apartment Homes is a fully-integrated real estate investment firm engaged in the acquisition, ownership, management, and rehabilitation of multifamily apartment communities. Headquartered in Santa Barbara CA, NALS owns and manages over 15,000 apartment homes geographically dispersed across 15 different markets. Our success remains grounded in disciplined investing principles and a company culture of collaboration and excellence. Our friendly, professional team members across the nation work hard to provide every resident with a quality place to call home. By providing more amenities, more service, and more value, we strive to make apartment living both enjoyable and easy. NALS was founded by Henry Nevins in Los Angeles in 1984. Since then, we have brought in partners and management leaders that share our investment and management principles to provide continuity and sustainable growth. In 2017, our company celebrated its 100th property acquisition with our dedicated 480 employees.SITE: www.nals.com Address : 920 Garden St Ste A, Santa Barbara, California, 93101, United StatesALL DATA SIZE: 145gb 1. Reports 2. Payroll 3. Personal 4. Accting 5. Personal users folders, documents amd etc…

Victim:   |  Group: 
US flag

americanalarm.com 

Company logo
Ransomware Group:

Discovery Date: 2023-12-28 20:38
Estimated Attack Date: 2023-12-05

Sector:
American Alarm and Communications Founded in 1971 and headquartered in Arlington, Massachusetts, American Alarm and communications is a 24-hour security system integration and monitoring company. At American Alarm we believe in reliable, local protection. We’ve been protecting homes and businesses across New England since 1971. Our company is staffed with dedicated professionals who live in the communities they serve- perhaps even in your neighborhood.SITE: www.americanalarm.com Address : 297 Broadway, Arlington, Massachusetts, 02474, United StatesALL DATA SIZE: 504gb 1. Accounting 2. Financial 3. Human Resources 4. 401(k) and etc…

Victim:   |  Group: 
US flag

webblaw.com 

Company logo
Ransomware Group:

Discovery Date: 2023-12-27 23:15
Estimated Attack Date: 2023-12-04

Sector:
The most innovative corporations in the world entrust The Webb Law Firm to safeguard their Intellectual Property. Focused on all aspects of Intellectual Property law since 1845, we have grown progressively and now offer over 50 attorneys to service our clients’ needs. Our clients range from large global businesses to emerging companies. Every major industry and technical discipline is represented in our client base and reflected in the capabilities of our dual-degreed attorneys. We are known for delivering high quality Intellectual Property legal solutions that fit our clients’ needs ranging from individual projects to full-service IP legal services. Our attorneys work in all aspects of technology, including steel, glass, medical devices, advanced manufacturing, life sciences, and information technology. Attorneys at The Webb Law Firm are registered to practice before the U.S. Patent & Trademark Office and have degrees in both the law and the sciences, plus many have extensive experience in the industries in which our clients operate.

Victim:   |  Group: 
 flag

whafh.com 

Company logo
Ransomware Group:

Discovery Date: 2023-12-22 19:17

Sector:
Wolf Haldenstein Adler Freeman & Herz LLP has decades of experience in complex litigation, with an emphasis on securities and shareholder derivative litigation, antitrust litigation, copyright litigation, business litigation, and consumer protection. The Firm has recovered more than $9 billion for its clients, including defrauded shareholders and investors, antitrust victims, victims of copyright infringement, and injured consumers. Wolf Haldenstein has earned global acclaim for its many groundbreaking achievements.SITE: www.whafh.com Address 270 Madison Avenue New York, New York 10016 UNITED STATES (212) 545-4600Symphony Towers 750 B Street, Suite 1820 San Diego, California 92101 UNITED STATES (619) 239-4599111 West Jackson, Suite 1700 Chicago, IL 60604 UNITED STATES (312) 984-00001008 17th Ave South Nashville, TN 37212 UNITED STATES (615) 270-8111FULL DATA SIZE: 452gb 1. I-9 forms 2. ConfidentialityNETWORK: WHAFHGROUP-------------------------DOMAIN ADMINS------------------------- admin Administrator Avada citrix cyberdocs dbagent discovery dm docs eqt_controller fusion gateway gjata gwweb hal2000 ldap legalkey mail mann monitor newwinny newwinsd NYDC2DHCP scheduler summation2 whafhapps whafhch whafhny whafhsd whafhsql whafhweb wolf1WHAFHGROUP\Administrator !w0lf1888!son-------------------------DC------------------------- whafhny.whafh.com 10.1.3.2 Windows Server 2008 R2 Standard WHAFHSD.whafh.com 10.3.1.2 Windows Server 2012 R2 Standard NYDC1.whafh.com 10.1.3.3 Windows Server 2008 R2 Standard SDDC1.whafh.com 10.3.1.2 Windows Server 2012 R2 Standard-------------------------SERVERS------------------------- Tabsny.whafh.com Windows Server 2019 Standard WIN-19.whafh.com Windows Server 2019 Standard tabs.whafh.com 10.1.3.4 Windows Server 2019 Standard CTX4.whafh.com 10.1.3.20 Windows Server 2012 R2 Standard WStorefront.whafh.com 10.1.3.69 Windows Server 2012 R2 Standard VWNY.whafh.com 10.1.3.150 Windows Server 2012 R2 Standard WSUS.whafh.com 10.1.3.120 Windows Server 2012 R2 Standard CTX2.whafh.com 10.1.3.19 Windows Server 2012 R2 Standard CTX1.whafh.com 10.1.3.33 Windows Server 2012 R2 Standard DMNY.whafh.com 10.1.3.24 Windows Server 2012 R2 Standard DMSD.whafh.com 10.3.1.18 Windows Server 2012 R2 Standard whafhapps.whafh.com 10.1.3.12 Windows Server 2012 R2 Standard mailny1.whafh.com 10.1.3.7 Windows Server 2012 R2 Standard wolf1.whafh.com 10.1.0.8 Windows Server 2012 R2 Standard equitrac.whafh.com 10.1.1.18 Windows Server 2008 R2 Standard NYSQL.whafh.com 10.1.3.30 Windows Server 2008 R2 Standard SUMMATION.whafh.com 10.1.3.26 Windows Server 2008 R2 Standard DISCOVERY.whafh.com 10.1.3.32 Windows Server 2008 R2 Standard MONITOR.whafh.com Windows Server 2008 R2 Standard HP2.whafh.com Windows Server 2008 R2 Standard SQL.whafh.com 10.1.3.22 Windows Server 2008 R2 Standard HP1.whafh.com Windows Server 2008 R2 Standard NYPRT.whafh.com 10.1.3.16 Windows Server 2008 R2 Standard WHAFHCA2.whafh.com 10.1.3.77 Windows Server 2008 R2 Standard CITRIX1.whafh.com 10.1.3.19 Windows Server 2008 R2 Standard WEB.whafh.com 10.1.0.15 Windows Server 2008 R2 Standard FUSION.whafh.com 10.1.3.5 Windows Server 2008 R2 Standard DM.whafh.com Windows Server 2008 R2 Standard mailny.whafh.com Windows Server® 2008 Standard

Victim:   |  Group: 
GB flag

hotelplan.co.uk 

Company logo
Ransomware Group:

Discovery Date: 2023-12-22 16:18
Estimated Attack Date: 2023-12-12

Sector:
Hotelplan UK is the UK subsidiary of Hotelplan Group, a large pan-European travel group headquartered in Switzerland. We are a well-established family of five specialist tour operators, with a strong tradition of excellence & high standards of quality and service. We are passionate about the holidays we offer, and we always aim to meet or exceed the expectations of our customers’. Sustainability and responsible tourism are at the heart of everything we do. The Hotelplan UK family of brands includes Inghams, Esprit, Santa’s Lapland and Explore Worldwide all based in Nelson House in Farnborough, together with Inntravel based near York.SITE: www.hotelplan.co.uk Address : Nelson House, Victoria Rd, Farnborough GU14 7PA, United KingdomALL DATA SIZE: 704gb 1. Human Resources 2. Users personal folders 3. Finance and etc…

Victim:   |  Group: 
GB flag

brintons.co.uk 

Company logo
Ransomware Group:

Discovery Date: 2023-12-19 14:51
Estimated Attack Date: 2023-12-07

Sector:
We believe that a carpet is never just a carpet. Since 1783 we’ve seen it as a way to bring your home to life, helping you to express yourself in ways that you never thought possible. Our good name and reputation is important to us so we work hard to make sure you get the very best for your money and if you invest in a Brintons carpet we promise you will become the owner of a floor you can be proud of - practical and hardwearing, as well as beautiful – that will continue to look great for years to come. We develop all of our designs and colours in our own studios and control the manufacturing process from start to finish: After selecting only the best fleeces, we spin and dye yarn to stringent quality standards, mixing together wool with nylon to create our special Brintons ‘80/20’ blend of 80% wool and 20% nylon, guaranteeing a carpet that is soft yet strong. We specialise in woven carpets: Wilton, which is great for textured plains and Axminster, a process that allows the creation of breathtaking patterns. We use our expert knowledge to weave the very best quality carpet for you and regardless of whether you choose patterned or plain, every Brintons carpet is inspected by eye twice, and finished by hand before it leaves our factory.ALL DATA SIZE: 1.2tb 1. Personal 2. Home users folders, personal documents 3. Departments data 4. CAD and etc…

Victim:   |  Group: 
US flag

pecofoods.com 

Company logo
Ransomware Group:

Discovery Date: 2023-12-19 14:51

Sector:
Peco Foods hopes you’ll pick up their poultry. Producing some 24 million pounds of poultry each week, the company processes private-label and store-brand chicken for US retail and foodservice customers. Peco Foods also exports items to Canada, Mexico, South America, Asia, and Eastern Europe. The processing company’s frozen, deli, and tray-pack products include boneless, skinless chicken breasts and tenderloins; boneless thighs; and jumbo legs and wings; as well as value-added breaded and flavored products. As a fully integrated processor, Peco Foods operates feed mills and hatcheries in three US states to support its poultry production facilities. Peco Foods is owned and operated by the founding Hickman family.SITE: www.pecofoods.com Address : 1101 Greensboro Ave Tuscaloosa, Alabama 35401, United StatesALL DATA SIZE: 510gb 1. Users personal documents 2. Human Resources 3. Accounting 4. Scans and etc…

Victim:   |  Group: 
CA flag

navitaspet.com 

Company logo
Ransomware Group:

Discovery Date: 2023-12-18 13:07

Sector:
Navitas Petroleum is a publicly traded (TASE:NVPT.L) North America focused, O&G exploration and production partnership. Navitas Petroleum has an established asset portfolio, including: conventional onshore production (Neches field), robust offshore production (Buckskin project), development stage assets (post-FID Shenandoah project) and high-impact exploration prospects (Block 7, offshore Canada).SITE: www.navitaspet.com Address 5847 San Felipe #2200 Houston, Texas 77057 UNITED STATES 713-955-7944 Ext 402FULL DATA SIZE: 330gb 1. Accounting 2. HR 3. W-9 forms 4. ConfidentialityNETWORK: PELES-------------------------DOMAIN ADMINS------------------------- AdministratorPELES\Administrator Pr0t3ctM3!!!-------------------------DC------------------------- DC01-Peles.Peles.local 10.10.1.30 Windows Server 2019 Standard-------------------------SERVERS------------------------- License01-Peles.Peles.local Windows Server 2019 Standard ACCT01-PELES.Peles.local 10.10.1.39 Windows Server 2019 Standard FS01-Peles.Peles.local 10.10.1.34 Windows Server 2019 Standard Citrix01-Peles.Peles.local 10.10.1.32 Windows Server 2019 Standard Citrix02-Peles.Peles.local 10.10.1.33 Windows Server 2019 Standard VDA01-Peles.Peles.local 10.10.1.29 Windows Server 2019 Standard Petra01-Peles.Peles.local 10.10.1.38 Windows Server 2016 Standard scada01-Peles.Peles.local Windows Server 2016 Standard

Victim:   |  Group: 
US flag

vyera.com 

Company logo
Ransomware Group:

Discovery Date: 2023-12-18 13:07
Estimated Attack Date: 2023-12-05

Sector:
Vyera Pharmaceuticals is committed to developing and commercializing treatments that address serious and neglected diseases with high unmet medical needs.SITE: www.vyera.com Address 600 Third Avenue, 19th Floor New York, NY 10016 UNITED STATES 212.202.5935FULL DATA SIZE: 226gb 1. R&D 2. HR 3. W-9 forms 4. ConfidentialityNETWORK: NYNY ny.vyera.com-------------------------DOMAIN ADMINS------------------------- Administrator a-mkolias gunjan.jain kbezrodnykh pauserid-svc rpatel rws rws.ind rws.support SCCMADMIN varonis-svcny.vyera.com\Administrator P@$$m0rd_2021 ny.vyera.com\SCCMADMIN P@$$m0rd_2021 ny.vyera.com\rws.support M@$$m0rd_2023-------------------------DC------------------------- vny-dc01.ny.vyera.com 172.16.15.2 Windows Server 2016 Datacenter vny-dc02.ny.vyera.com vny-dc03.ny.vyera.com 172.17.9.4 Windows Server 2019 Datacenter VNY-RDC01.ny.vyera.com 172.16.26.2 Windows Server 2016 Datacenter NOT REAL DC: vny-rdc01.ny.vyera.com 172.16.26.2 Windows Server 2016 Datacenter-------------------------SERVERS------------------------- fileserver.ny.vyera.com Windows Server 2016 Datacenter fileserver-cl.ny.vyera.com Windows Server 2016 Datacenter vnj-cl02.ny.vyera.com Windows Server 2016 Datacenter vny-ms05.ny.vyera.com 172.16.15.15 Windows Server 2016 Datacenter vny-ms04.ny.vyera.com 172.16.15.26 Windows Server 2016 Datacenter vye-ny-as02.ny.vyera.com Windows Server 2016 Datacenter vnj-cfs01.ny.vyera.com Windows Server 2016 Datacenter vnj-as01.ny.vyera.com Windows Server 2016 Datacenter vnj-dc01.ny.vyera.com Windows Server 2016 Datacenter vnj-hv01.ny.vyera.com Windows Server 2016 Datacenter vnj-cfs02.ny.vyera.com Windows Server 2016 Datacenter vnj-dc02.ny.vyera.com Windows Server 2016 Datacenter vny-hv03.ny.vyera.com 172.16.16.10 Windows Server 2016 Datacenter nsc01.ny.vyera.com Windows Server 2016 Datacenter vny-bi01.ny.vyera.com 172.16.15.43 Windows Server 2016 Datacenter vny-br01.ny.vyera.com Windows Server 2016 Datacenter vny-fs01.ny.vyera.com 172.16.15.12 Windows Server 2016 Datacenter rws_test.ny.vyera.com Windows Server 2016 Datacenter test.ny.vyera.com Windows Server 2016 Datacenter vny-gw01.ny.vyera.com Windows Server 2016 Datacenter vny-ns02.ny.vyera.com Windows Server 2016 Datacenter vnj-ws01.ny.vyera.com Windows Server 2016 Datacenter vny-cfs03.ny.vyera.com 172.16.15.31 Windows Server 2016 Datacenter vny-sh01.ny.vyera.com Windows Server 2016 Datacenter vny-ws01.ny.vyera.com Windows Server 2016 Datacenter vny-ms06.ny.vyera.com 172.16.15.25 Windows Server 2016 Datacenter vny-db05.ny.vyera.com 172.16.15.24 Windows Server 2016 Datacenter vny-cfs02.ny.vyera.com Windows Server 2016 Datacenter vny-cfs01.ny.vyera.com Windows Server 2016 Datacenter vny-cl01.ny.vyera.com 172.16.15.23 Windows Server 2016 Datacenter vny-cl02.ny.vyera.com 172.16.15.29 Windows Server 2016 Datacenter vny-db04.ny.vyera.com Windows Server 2016 Datacenter vny-db03.ny.vyera.com 172.16.15.18 Windows Server 2016 Datacenter vny-us01.ny.vyera.com Windows Server 2016 Datacenter vny-db01.ny.vyera.com 172.16.15.69 Windows Server 2016 Datacenter vny-pr01.ny.vyera.com Windows Server 2016 Datacenter vny-hv01.ny.vyera.com 172.16.15.70 Windows Server 2016 Datacenter vny-sc01.ny.vyera.com 172.16.15.34 Windows Server 2016 Datacenter vny-bk01.ny.vyera.com 172.16.15.79 Windows Server 2016 Datacenter vny-db02.ny.vyera.com Windows Server 2016 Datacenter vny-as04.ny.vyera.com 172.16.15.17 Windows Server 2016 Datacenter vny-cx05.ny.vyera.com 172.16.15.11 Windows Server 2016 Datacenter vny-cx04.ny.vyera.com Windows Server 2016 Datacenter vny-as06.ny.vyera.com 172.16.15.37 Windows Server 2016 Datacenter vny-vc01.ny.vyera.com Windows Server 2016 Datacenter vny-hv02.ny.vyera.com 172.16.15.21 Windows Server 2016 Datacenter vny-cx02.ny.vyera.com 172.16.15.65 Windows Server 2016 Datacenter vny-as02.ny.vyera.com Windows Server 2016 Datacenter vny-ns01.ny.vyera.com Windows Server 2016 Datacenter vny-cx03.ny.vyera.com 172.16.15.64 Windows Server 2016 Datacenter vny-as01.ny.vyera.com 172.16.15.42 Windows Server 2016 Datacenter vny-as03.ny.vyera.com Windows Server 2016 Datacenter admtpc.ny.vyera.com Windows Server 2016 DatacenterPHXCH phoenixus.com-------------------------DOMAIN ADMINS------------------------- Administrator a-mkolias gunjan.jain kbezrodnykh pauserid-svc rpatel rws rws.ind rws.support SCCMADMIN varonis-svcphxch\Administrator 1@rmyKnife!!-------------------------DC------------------------- phx-dc01.phoenixus.com 172.16.105.2 Windows Server 2016 Datacenter phx-dc02.phoenixus.com 172.16.105.3 Windows Server 2016 Datacenter-------------------------SERVERS------------------------- phx-hv02.phoenixus.com 172.16.105.33 Windows Server 2016 Datacenter phx-hv01.phoenixus.com 172.16.105.16 Windows Server 2016 Datacenter phx-bk01.phoenixus.com Windows Server 2016 Datacenter phx-pbx01.phoenixus.com 172.16.111.20 Windows Server 2016 Datacenter phx-cl01.phoenixus.com 172.16.105.19 Windows Server 2016 Datacenter phx-test-cl.phoenixus.com Windows Server 2016 Datacenter test-cfs03.phoenixus.com Windows Server 2016 Datacenter phx-as01.phoenixus.com 172.16.105.32 Windows Server 2016 Datacenter phx-ps01.phoenixus.com 172.16.105.10 Windows Server 2016 Datacenter phx-fs01.phoenixus.com 172.16.105.35 Windows Server 2016 Datacenter phx-ws01.phoenixus.com 172.16.105.13 Windows Server 2016 Datacenter phx-sc01.phoenixus.com 172.16.105.14 Windows Server 2016 Datacenter phx-ns01.phoenixus.com 172.16.105.15 Windows Server 2016 Datacenter phx-ca02.phoenixus.com 172.16.105.11 Windows Server 2016 Datacenter test-fs01.phoenixus.com Windows Server 2016 StandardVYERA vyera.com-------------------------DOMAIN ADMINS------------------------- Administrator admt-svc AzureADSyncvyera.com\AzureADSync Provost_ver!!!23-------------------------DC------------------------- v-dc01.vyera.com 172.16.14.2 Windows Server 2016 Datacenter v-dc02.vyera.com v-dc03.vyera.com 172.17.8.4 Windows Server 2019 Datacenter-------------------------SERVERS------------------------- v-ca02.vyera.com 172.16.15.55 Windows Server 2016 Datacenter v-ws01.vyera.com Windows Server 2016 Datacenter Sage_Test.vyera.com Windows Server 2016 Datacenter EvaluationOAK oakrumpharma.com-------------------------DOMAIN ADMINS------------------------- Administrator veeam-svc Azure-svc varonis-svcOAK\veeam-svc 4RfIp@YXq,j&j,Px1LypRnsu-------------------------DC------------------------- oak-dc01.oakrumpharma.com 172.16.92.2 Windows Server 2016 Datacenter oak-dc02.oakrumpharma.com 172.16.92.3 Windows Server 2016 Datacenter-------------------------SERVERS------------------------- oak-fs01.oakrumpharma.com 172.16.92.5 Windows Server 2016 DatacenterSSP sevenscorepharma.com-------------------------DOMAIN ADMINS------------------------- Administratorsevenscorepharma.com\Administrator P@$$m0rd_2021-------------------------DC------------------------- ssp-dc01.sevenscorepharma.com ssp-dc02.sevenscorepharma.com 172.21.15.3 Windows Server 2016 Datacenter-------------------------SERVERS------------------------- ssp-as01.sevenscorepharma.com 172.21.15.13 Windows Server 2016 Datacenter ssp-ps01.sevenscorepharma.com Windows Server 2016 Datacenter ssp-fs01.sevenscorepharma.com 172.21.15.11 Windows Server 2016 Datacenter

Victim:   |  Group: 
GB flag

hallidays.co.uk 

Company logo
Ransomware Group:

Discovery Date: 2023-12-18 13:06
Estimated Attack Date: 2023-12-06

Sector:
Hallidays we’re much more than accountants, we’re business partners to our clients. We support them and help them to grow in a wide range of ways. If you’re an ambitious business that wants to grow, we’re the team you want in your corner.SITE: www.hallidays.co.uk Address Riverside House, Business Park Kings Reach, Yew St Stockport SK4 2HD United Kingdom 0161 476 8276FULL DATA SIZE: 572gb 1. Accounting 2. HR 3. ConfidentialityNETWORK: HALLIDAYSCNS-------------------------DOMAIN ADMINS------------------------- Administrator ChristianW haladfsuser Lyndsey SCVMMAdmin ServerAdmin TMPAdminhallidayscns\administrator mYSTICtEA-------------------------DC------------------------- HALDC04.HALLIDAYSCNS.HALLIDAYS.CO.UK 192.168.0.221 Windows Server 2016 Standard HVM-DC01.HALLIDAYSCNS.HALLIDAYS.CO.UK 192.168.0.67 Windows Server 2019 Standard-------------------------SERVERS------------------------- HVM-S2DCluster.HALLIDAYSCNS.HALLIDAYS.CO.UK 192.168.0.51 Windows Server 2019 Datacenter HVMS2DREPLICA.HALLIDAYSCNS.HALLIDAYS.CO.UK 192.168.0.119 Windows Server 2019 Datacenter HVM-S2DSRV02.HALLIDAYSCNS.HALLIDAYS.CO.UK 192.168.0.54 Windows Server 2019 Datacenter HVM-FILE04.HALLIDAYSCNS.HALLIDAYS.CO.UK Windows Server 2019 Datacenter HVM-FILE05.HALLIDAYSCNS.HALLIDAYS.CO.UK 192.168.0.92 Windows Server 2019 Datacenter HVM-ADFS01.HALLIDAYSCNS.HALLIDAYS.CO.UK 192.168.0.93 Windows Server 2019 Datacenter SOFS01.HALLIDAYSCNS.HALLIDAYS.CO.UK 192.168.0.58 Windows Server 2019 Datacenter HVM-RD01.HALLIDAYSCNS.HALLIDAYS.CO.UK Windows Server 2019 Datacenter HVM-VEEAM01.HALLIDAYSCNS.HALLIDAYS.CO.UK 192.168.0.88 Windows Server 2019 Datacenter HVM-S2DSRV01.HALLIDAYSCNS.HALLIDAYS.CO.UK 192.168.0.52 Windows Server 2019 Datacenter HVM-S2DSRV04.HALLIDAYSCNS.HALLIDAYS.CO.UK 192.168.0.58 Windows Server 2019 Datacenter HVM-VAR01.HALLIDAYSCNS.HALLIDAYS.CO.UK Windows Server 2019 Datacenter HVM-S2DSRV03.HALLIDAYSCNS.HALLIDAYS.CO.UK 192.168.0.56 Windows Server 2019 Datacenter HVM-SCOM01.HALLIDAYSCNS.HALLIDAYS.CO.UK Windows Server 2019 Datacenter Evaluation HVM-FILE01.HALLIDAYSCNS.HALLIDAYS.CO.UK 192.168.0.72 Windows Server 2019 Standard HVM-TS01.HALLIDAYSCNS.HALLIDAYS.CO.UK 192.168.0.97 Windows Server 2019 Standard HVM-CTXDCLIC01.HALLIDAYSCNS.HALLIDAYS.CO.UK 192.168.0.68 Windows Server 2019 Standard HVM-DEV08.HALLIDAYSCNS.HALLIDAYS.CO.UK 192.168.0.94 Windows Server 2019 Standard APP001.HALLIDAYSCNS.HALLIDAYS.CO.UK 192.168.1.129 Windows Server 2019 Standard HVM-APP01.HALLIDAYSCNS.HALLIDAYS.CO.UK Windows Server 2019 Standard HVM-DM01.HALLIDAYSCNS.HALLIDAYS.CO.UK 192.168.0.99 Windows Server 2019 Standard HVM-MGT01.HALLIDAYSCNS.HALLIDAYS.CO.UK 192.168.0.66 Windows Server 2019 Standard HVM-CTXSF01.HALLIDAYSCNS.HALLIDAYS.CO.UK Windows Server 2019 Standard HVM-VC01.HALLIDAYSCNS.HALLIDAYS.CO.UK 192.168.0.43 Windows Server 2019 Standard HVM-SQL01.HALLIDAYSCNS.HALLIDAYS.CO.UK Windows Server 2019 Standard HVM-VMMSQL01.HALLIDAYSCNS.HALLIDAYS.CO.UK Windows Server 2019 Standard HVM-PAYROLL01.HALLIDAYSCNS.HALLIDAYS.CO.UK 192.168.0.31 Windows Server 2019 Standard HVM-ACCOUNTS01.HALLIDAYSCNS.HALLIDAYS.CO.UK 192.168.0.74 Windows Server 2019 Standard HVM-FILE02.HALLIDAYSCNS.HALLIDAYS.CO.UK Windows Server 2019 Standard HVM-CTXSQL01.HALLIDAYSCNS.HALLIDAYS.CO.UK 192.168.0.47 Windows Server 2019 Standard HVM-FILE03.HALLIDAYSCNS.HALLIDAYS.CO.UK Windows Server 2019 Standard HVM-PRINT01.HALLIDAYSCNS.HALLIDAYS.CO.UK 192.168.0.75 Windows Server 2019 Standard HVM-CTXPVS03.HALLIDAYSCNS.HALLIDAYS.CO.UK 192.168.0.89 Windows Server 2019 Standard HALTS01.HALLIDAYSCNS.HALLIDAYS.CO.UK Windows Server 2016 Datacenter HALRDS01.HALLIDAYSCNS.HALLIDAYS.CO.UK Windows Server 2016 Datacenter HALVAR02.HALLIDAYSCNS.HALLIDAYS.CO.UK Windows Server 2016 Datacenter HALSQL04.HALLIDAYSCNS.HALLIDAYS.CO.UK 192.168.0.146 Windows Server 2016 Standard HALSQL03.HALLIDAYSCNS.HALLIDAYS.CO.UK Windows Server 2012 R2 Standard HALVBS02.HALLIDAYSCNS.HALLIDAYS.CO.UK Windows Server 2012 R2 Standard HALADFS02.HALLIDAYSCNS.HALLIDAYS.CO.UK Windows Server 2012 R2 Standard HALADFS.HALLIDAYSCNS.HALLIDAYS.CO.UK Windows Server 2012 R2 Standard HALPRINT01.HALLIDAYSCNS.HALLIDAYS.CO.UK Windows Server 2012 R2 Standard HALVC01.HALLIDAYSCNS.HALLIDAYS.CO.UK Windows Server 2012 R2 Standard HALFP02.HALLIDAYSCNS.HALLIDAYS.CO.UK Windows Server 2012 R2 Standard HALPROF01.HALLIDAYSCNS.HALLIDAYS.CO.UK Windows Server 2012 R2 Standard

Victim:   |  Group: 
US flag

kohlwholesale.com 

Company logo
Ransomware Group:

Discovery Date: 2023-12-16 14:28
Estimated Attack Date: 2023-12-04

Sector:
We are a strong broadline distributing force in Illinois, Iowa and Missouri and are committed to fulfilling the foodservice needs of our customers. Kohl Wholesale is a proud distributor of many national and regional brands in our inventory of over 14,000 products. Because we view our relationships with our suppliers and customers as working partnerships, we provide unmatched support for your operation, every step of the way! Kohl Wholesale strives to exceed customer expectations by delivering valuable goods and services from our family to yours.SITE: www.kohlwholesale.com Address : 130 Jersey St. Quincy, IL 62301 USAALL DATA SIZE: 525gb 1. Accounting 2. AccidentInformation 3. Customer Service 4. Human Resources 5. DL, Medical cards and other personal documents and etc…

Victim:   |  Group: 
US flag

thirdstreetbrewhouse.com carolinabeveragegroup.com 

Company logo
Ransomware Group:

Discovery Date: 2023-12-13 17:29
Estimated Attack Date: 2023-11-29

Sector:
THIRD STREET BREWHOUSE / CAROLINA BEVERAGE GROUP LLC, with a legacy dating back to 1874, Carolina Beverage Group has become the go-to source for quality contract beverage production. We operate three state-of-the-art facilities in the Southeast, Southwest and Midwest. This uniquely positions our company to better serve customers throughout the United States.THIRD STREET BREWHOUSE TRACES ITS HISTORY ALL THE WAY BACK TO 1874, WHEN MICHAEL SARGL, A GERMAN IMMIGRANT, STARTED BREWING BEER NEAR A COLD UNDERGROUND SPRING THAT GAVE HIS NEWFOUND BREWERY AND SURROUNDING TOWN ITS NAME.SITE: www.thirdstreetbrewhouse.com SITE: www.carolinabeveragegroup.com Address 219 Red River Ave Cold Spring, MN 56320 UNITED STATES 320.685.3690110 Barley Park Lane Mooresville, NC 28115 UNITED STATES 704.799.233713300 Park Vista Blvd Fort Worth, TX 76177 UNITED STATES 682.502.5048FULL DATA SIZE: 316gb 1. Accounting 2. I-9 forms 3. 401K forms 4. ConfidentialityNETWORK: GLUEKGLUEK GLUEK.COM-------------------------DOMAIN ADMINS------------------------- acadmin Administrator apt_svc bdr BHuffAdmin CBG.Admin cisco_ldap cpenickadmin CSB_SAPApp_srvc CSB_SAPdb_srvc CSB_SAPScan_srvc CSB_Trust_Admin epluseng gorpongadmin jondadmin nable_svc rchouffani rjacksonadmin Sonicwall svc_acbackup svc_loftware svcat svcbe svcranger svcsql svcvc svcvr Trevor.BlankenshipGLUEK.COM\rchouffani Lucas0207 GLUEK.COM\svc_loftware Beer320.-------------------------DC------------------------- csbdc3.GLUEK.COM 192.168.20.130 Windows Server 2012 R2 Standard csbdc4.GLUEK.COM 192.168.20.131 Windows Server 2012 R2 Standard CSB1378-AD03.GLUEK.COM 172.20.47.112 Windows Server 2012 R2 Datacenter-------------------------SERVERS------------------------- CSB-SRV-UTIL.GLUEK.COM 10.201.0.5 Windows Server 2022 Datacenter CSB-SRV-DEV.GLUEK.COM 10.201.0.6 Windows Server 2022 Datacenter CSB-SQL-DEV.GLUEK.COM 10.201.0.7 Windows Server 2022 Datacenter Azure Edition CSB-BI.GLUEK.COM 10.201.0.9 Windows Server 2019 Datacenter CSB-SAP-SRVT.GLUEK.COM 10.201.0.10 Windows Server 2019 Datacenter CSB-SAP-SQLT.GLUEK.COM 10.201.0.8 Windows Server 2019 Datacenter CSB-SAP-NPS.GLUEK.COM 10.201.0.12 Windows Server 2019 Datacenter CSB-SAP-PRT.GLUEK.COM 10.201.0.14 Windows Server 2019 Datacenter CSB-RDSLabel.GLUEK.COM Windows Server 2019 Datacenter CSB-PRT-SERVER.GLUEK.COM 10.201.0.13 Windows Server 2019 Datacenter csbrds02.GLUEK.COM Windows Server 2016 Standard CSB-SRV-IGNTS.GLUEK.COM Windows Server 2016 Standard CSBMGMT.GLUEK.COM 192.168.20.90 Windows Server 2016 Standard csbrds01.GLUEK.COM Windows Server 2016 Standard csbapt.GLUEK.COM Windows Server 2012 R2 Standard csbapt-sql.GLUEK.COM Windows Server 2012 R2 Standard csbaptts1.GLUEK.COM Windows Server 2012 R2 Standard CSBFS2.GLUEK.COM 192.168.20.12 Windows Server 2012 R2 Standard CSBTS5.GLUEK.COM Windows Server 2012 R2 Standard csbsp.GLUEK.COM Windows Server 2012 R2 Standard csbignition.GLUEK.COM Windows Server 2012 R2 Standard csbmp2-12.GLUEK.COM Windows Server 2012 R2 Standard BREWHOUSE-BDR.GLUEK.COM Windows Server 2012 R2 Standard csbmsds.GLUEK.COM Windows Server 2012 R2 Standard CSBMP2TS2.GLUEK.com Windows Server 2008 R2 Standard CSBUTIL.GLUEK.com Windows Server 2008 R2 Standard CSBVC1.GLUEK.com Windows Server 2008 R2 Standard CSBSQL64.GLUEK.com Windows Server 2008 R2 Standard csbpp1.GLUEK.COM Windows Server® 2008 Standard csbpp2.GLUEK.COM Windows Server® 2008 Standard csbtc.GLUEK.COM Windows Server® 2008 Standard csbtsacct.GLUEK.COM Windows Server® 2008 Standard csbmp2.GLUEK.COM Windows Server 2003 csbsql.GLUEK.COM Windows Server 2003GLUEK GLUEK.COM-------------------------DOMAIN ADMINS------------------------- RJACKSONADMIN JONDADMIN GORPONGADMIN BHUFFADMIN RILEYADMIN CPENICKADMIN BTS.ADMINISTRATOR SAPDB_SRVC SHANEADMIN CBGSQL CAROL.ADMIN VANTAGE.ADMIN CONCERTO CBG_TRUST_ADMIN CBG_SERVICES EPLUSADMIN DANIELADMIN NABLE_SVC REDAADMIN VENDOR.ADMIN ADSYNC BIZTECHDATA APPASSURE SAPAPP_SRVC VEEAM-BACKUPS SAPSCAN_SRVC CA-ACCOUNT DIR.SYNC SAPSRVADMIN SONICWALLSSO VMWARE SONICWALLLDAP2 BACKUP SAPADMIN BESADMIN EXCHANGE ADMINISTRATORcbb2.local\bts.administrator Gr@ph1t3 cbb2.local\CBGSQL 110Barley cbb2.local\Vendor.Admin 346Plaza-------------------------DC------------------------- CBG-DC-NC01.cbb2.local 192.168.0.8 Windows Server 2022 Standard CBG-DC-TX01.cbb2.local CBG-DC-AZ01.cbb2.local 192.168.122.62 Windows Server 2022 Datacenter Azure Edition-------------------------SERVERS------------------------- CBG-PRT-SERVER.cbb2.local 192.168.122.53 Windows Server 2022 Datacenter CBG-SAP-FP2222.cbb2.local 192.168.122.48 Windows Server 2022 Datacenter CBG-EDI-SRV.cbb2.local 192.168.122.54 Windows Server 2022 Datacenter CBGDC03.cbb2.local Windows Server 2022 Datacenter Azure Edition CBG-ADSync.cbb2.local 192.168.122.58 Windows Server 2022 Datacenter Azure Edition TRANSMAN-AZ.cbb2.local Windows Server 2022 Datacenter Azure Edition scanportal3.cbb2.local Windows Server 2022 Datacenter Azure Edition CBG-SRV-WEB.cbb2.local Windows Server 2022 Datacenter Azure Edition TESTPGPO.cbb2.local Windows Server 2022 Datacenter Azure Edition RDSCBGLABEL.cbb2.local 192.168.122.25 Windows Server 2022 Datacenter Azure Edition CBGDC07.cbb2.local Windows Server 2022 Datacenter Azure Edition CBGSRV1.cbb2.local Windows Server 2022 Standard CBG-HA-DHCP.cbb2.local 192.168.0.54 Windows Server 2022 Standard TX-DHCP-HA.cbb2.local Windows Server 2022 Standard CBG-SAP-DCD.cbb2.local 192.168.122.35 Windows Server 2019 Datacenter CBG-SAP-FP2108.cbb2.local Windows Server 2019 Datacenter Transman-Azure.cbb2.local 192.168.122.60 Windows Server 2019 Datacenter CBG-SAP-SRVSQLT.cbb2.local 192.168.122.49 Windows Server 2019 Datacenter CBG-SAP-FP2111.cbb2.local Windows Server 2019 Datacenter CBG-SAP-TRN.cbb2.local 192.168.122.17 Windows Server 2019 Datacenter CBG-SAP-FP2111CLONE.cbb2.local 192.168.122.31 Windows Server 2019 Datacenter CBG-SAP-PRT.cbb2.local 192.168.122.50 Windows Server 2019 Datacenter CBG-SAP-BI.cbb2.local Windows Server 2019 Datacenter CBG-SAP-CRTL.cbb2.local 192.168.122.33 Windows Server 2019 Datacenter RedZoneTX.cbb2.local 192.168.122.24 Windows Server 2019 Datacenter CBGSAP10.cbb2.local Windows Server 2019 Datacenter CBG-SAP-SRVP.cbb2.local 192.168.122.30 Windows Server 2019 Datacenter CBG-SAP-SQL-P.cbb2.local Windows Server 2019 Datacenter TQBscan.cbb2.local Windows Server 2019 Datacenter CBG-SAP-SRVD.cbb2.local Windows Server 2019 Datacenter CBG-SAP-SQL-D.cbb2.local Windows Server 2019 Datacenter CBG-SAP-SQL-T.cbb2.local Windows Server 2019 Datacenter SCANPORTAL.cbb2.local 192.168.122.38 Windows Server 2019 Datacenter CBG-BI.cbb2.local 192.168.122.37 Windows Server 2019 Datacenter CBGAppDev.cbb2.local Windows Server 2019 Datacenter CBG-SAP-SRV-T.cbb2.local Windows Server 2019 Datacenter CBG-SAP-SQL-P3.cbb2.local Windows Server 2019 Datacenter CBG-Relay.cbb2.local Windows Server 2019 Standard 2018CBGSAP.cbb2.local Windows Server 2016 Datacenter CBG-PRT-SRV.cbb2.local 192.168.0.129 Windows Server 2016 Datacenter CBG-SAP-SQL16.cbb2.local Windows Server 2016 Datacenter CBGTX-SeamView.cbb2.local Windows Server 2016 Datacenter CBGSAPDEV.cbb2.local 192.168.0.22 Windows Server 2016 Datacenter CBGScan8.cbb2.local 192.168.122.38 Windows Server 2016 Datacenter CBGSAPTest.cbb2.local 192.168.122.14 Windows Server 2016 Datacenter BI360Report.cbb2.local Windows Server 2016 Datacenter RedZone.cbb2.local 192.168.122.19 Windows Server 2016 Datacenter CBGETQAPP.cbb2.local 192.168.122.21 Windows Server 2016 Datacenter CBGLabelPortal.cbb2.local 192.168.122.7 Windows Server 2016 Datacenter BI360WebApp.cbb2.local Windows Server 2016 Datacenter ScanPrintServer.cbb2.local 192.168.122.8 Windows Server 2016 Datacenter CBG-Radius.cbb2.local 192.168.0.16 Windows Server 2016 Standard CBG-File.cbb2.local 192.168.0.28 Windows Server 2016 Standard NCCIP1.cbb2.local 192.168.100.94 Windows Server 2016 Standard NCCIP2.cbb2.local 192.168.100.95 Windows Server 2016 Standard Office365-Link.cbb2.local 192.168.0.112 Windows Server 2016 Standard CBG-DA.cbb2.local Windows Server 2012 Datacenter TMWFBS.cbb2.local Windows Server 2012 Datacenter CBG-EXCH-HYBRID.cbb2.local Windows Server 2012 Datacenter SQL.cbb2.local 192.168.0.83 Windows Server 2012 Datacenter 2008ActiveDirectory.cbb2.local Windows Server 2012 Datacenter CBG-VSRV-SP13.cbb2.local Windows Server 2012 Datacenter SAPRDS2.cbb2.local 192.168.122.13 Windows Server 2012 R2 Datacenter CBGSQL16.cbb2.local 192.168.122.11 Windows Server 2012 R2 Datacenter azuredc.cbb2.local Windows Server 2012 R2 Datacenter CBGCrystalRpt.cbb2.local Windows Server 2012 R2 Datacenter CBGVeeam.cbb2.local Windows Server 2012 R2 Datacenter CBGSAP.cbb2.local Windows Server 2012 R2 Datacenter SAPRDS3.cbb2.local 192.168.122.56 Windows Server 2012 R2 Datacenter SAPRDS1.cbb2.local 192.168.122.12 Windows Server 2012 R2 Datacenter CBGScan.cbb2.local Windows Server 2012 R2 Datacenter CBGScanSSSR.cbb2.local Windows Server 2012 R2 Datacenter CBGScanDC.cbb2.local Windows Server 2012 R2 Datacenter CBGSAP2.cbb2.local Windows Server 2012 R2 Datacenter CBGTX-DC02.cbb2.local Windows Server 2012 Standard CBGTX-PRINT.cbb2.local Windows Server 2012 Standard printserver2.cbb2.local 192.168.0.57 Windows Server 2008 R2 Datacenter TRANSMAN.cbb2.local Windows Server 2008 R2 Standard CBG-SRV-VC.cbb2.local Windows Server 2008 R2 Standard TQB-BR1-FTH-SRV.cbb2.local Windows Server 2008 R2 Standard TQB-BR1-FTV-SRV.cbb2.local Windows Server 2008 R2 StandardCSB1378 CSB1378.LOCAL-------------------------DOMAIN ADMINS------------------------- AAkan aaliokhin acadmin ACADMIN2 Administrator AKozlov aKuthala Andy.Bertha arazuev AStatsenko AXIntUsr AXSupport basu cbb2admin CChevalier cdrost CLOUD_ADMIN CRobbins DPerepelov dschmidt fkramer JBurkhart jHurylovich jkatz jsogge kkrieger kschmitz mLarkin mswift mthostenson nadmin nsreelaya NStein okhoroshylov OMaliutenko oseleznov pschleich RChouffani svc_snow_CSB1378 tdownie tejby tmercurio tsaeb vlitovchenkoCSB1378\arazuev Mollo1378 CSB1378\cbb2admin C0nc3rt0!-------------------------DC------------------------- CSB1378-AD01.CSB1378.LOCAL 172.20.47.103 Windows Server 2012 R2 Datacenter CSB1378-AD02.CSB1378.LOCAL 172.20.47.104 Windows Server 2012 R2 Datacenter-------------------------SERVERS------------------------- CSB1378-FS01.CSB1378.LOCAL 172.20.47.107 Windows Server 2019 Datacenter CSB1378-AOS03P.CSB1378.LOCAL 172.20.5.18 Windows Server 2012 R2 Datacenter CSB1378-XEN04P.CSB1378.LOCAL 172.20.5.10 Windows Server 2012 R2 Datacenter CSB1378-AOS01P.CSB1378.LOCAL 172.20.5.16 Windows Server 2012 R2 Datacenter CSB1378-AOS02P.CSB1378.LOCAL 172.20.5.17 Windows Server 2012 R2 Datacenter CSB1378-XEN02P.CSB1378.LOCAL 172.20.5.8 Windows Server 2012 R2 Datacenter CSB1378-XEN01P.CSB1378.LOCAL 172.20.5.7 Windows Server 2012 R2 Datacenter CSB1378-XEN01.CSB1378.LOCAL 172.20.47.111 Windows Server 2012 R2 Datacenter CSB1378-AOS04P.CSB1378.LOCAL 172.20.5.19 Windows Server 2012 R2 Datacenter CSB1378-XEN03P.CSB1378.LOCAL 172.20.5.9 Windows Server 2012 R2 Datacenter CSB1378-AOS01.CSB1378.LOCAL 172.20.47.105 Windows Server 2012 R2 Datacenter CSB1378-AOS02.CSB1378.LOCAL 172.20.47.106 Windows Server 2012 R2 Datacenter CSB1378-SQL01.CSB1378.LOCAL 172.20.47.109 Windows Server 2012 R2 Datacenter CSB1378-CDC01.CSB1378.LOCAL 172.20.47.110 Windows Server 2012 R2 Datacenter CSB1378-AOS03.CSB1378.LOCAL Windows Server 2012 R2 Datacenter CSB1378-SSRS01P.CSB1378.LOCAL 172.20.5.14 Windows Server 2012 R2 Datacenter CSB1378-APP01P.CSB1378.LOCAL 172.20.5.13 Windows Server 2012 R2 Datacenter CSB1378-AOS04.CSB1378.LOCAL Windows Server 2012 R2 Datacenter CSB1378-SQL01P.CSB1378.LOCAL 172.20.5.15 Windows Server 2012 R2 Datacenter

Victim:   |  Group: 
US flag

agy.com 

Company logo
Ransomware Group:

Discovery Date: 2023-12-13 13:09
Estimated Attack Date: 2023-11-03

Sector:
AGY is a world leader in high performance materials used in a range of markets including Electronics, Thermoplastics, Industrial, Aerospace, Recreation / Consumer and Defense with a focus on making our customers’ products lighter, faster and stronger. High performance materials in the form of glass fiber yarns and reinforcements provide our customers with six vital enhanced properties: strength, impact resistance, stiffness, temperature resistance, fatigue resistance and radar transparency. With a product portfolio developed for extreme performance utilizing a set of unique manufacturing platforms AGY provides tailored materials solutions to end-use customers for the most demanding applications worldwide.SITE: www.agy.com Address : 2556 Wagener Road Aiken, South Carolina, USA 29801ALL DATA SIZE: 403gb 1. Human Resources 2. Finance 3. Engineering 4. Science & Technology 5. Departmental data 6. Home users data files 7. Drawings 8. Incident reports and etc.

Victim:   |  Group: 
US flag

alexander-dennis.com 

Company logo
Ransomware Group:

Discovery Date: 2023-12-13 13:08
Estimated Attack Date: 2023-12-07

Sector:
Alexander Dennis is a British bus manufacturing company based in Larbert, Scotland. The largest bus and coach manufacturer in the United Kingdom with a 50% market share in 2019, it has manufacturing plants and partnerships in Canada, China, Europe, Hong Kong, Malaysia, New Zealand, Singapore, South Africa and the United States.SITE: www.alexander-dennis.com Address : 9 Central Central Park Blvd, Larbert, Stirlingshire, FK5 4RU, United KingdomALL DATA SIZE: 507gb 1. Group data 2. HR 3. Finance 4. Legal 5. Engineering 6. Departments and etc…

Victim:   |  Group: 
US flag

nlt.com 

Company logo
Ransomware Group:

Discovery Date: 2023-12-04 13:08
Estimated Attack Date: 2023-12-02

Sector:
National Lift Truck, Inc. in Franklin Park, Illinois, USA is a family owned and operated company established over six decades ago. Unlike most companies in our industry, we are a One-Stop Shop For ALL Your Material Handling Needs. We deal in New and Used Lift Equipment Sales and Rental - Forklifts, Aerial Work Platforms, Scissor Lifts, Boom Lifts, Telehandlers, Forklift Attachments, Cranes, Industrial Batteries and Chargers, Generators, Light Towers and more. We offer Equipment Service & Repair, Replacement Parts and a complete array of Material Handling Supplies. We also have Specialized Haul-For-Hire Services and Logistics with Long and Short-Term Indoor and Outdoor Industrial Storage as well as Warehousing Services, Warehousing Products and 3PL. We also provide Forklift and Area Work Platform Operator Safety Training.SITE: www.nlt.com Address : 921 171st St, Hazel Crest, Illinois, 60429, United StatesALL DATA SIZE: 331gb 1. Human Resources 2. Accounting 3. 401(k) form 4. Customer informations 5. Personal employees documents and etc…

Victim:   |  Group: 
GB flag

inseinc.com 

Company logo
Ransomware Group:

Discovery Date: 2023-12-02 11:29
Estimated Attack Date: 2023-11-08

Sector:
Inspired offers an expanding portfolio of content, technology, hardware and services for regulated gaming, betting, lottery, social and leisure operators across land-based and mobile channels around the world. Inspired’s gaming, virtual sports, interactive and leisure products appeal to a wide variety of players, creating new opportunities for operators to grow their revenue. Inspired operates in approximately 35 jurisdictions worldwide, supplying gaming systems with associated terminals and content for approximately 50,000 gaming machines located in betting shops, pubs, gaming halls and other route operations; virtual sports products through more than 32,000 retail venues and various online websites; digital games for 170+ websites; and a variety of amusement entertainment solutions with a total installed base of more than 16,000 gaming terminals.SITE: www.inseinc.com Address 107 Station Street Burton Upon Trent, Staffordshire, DE14 1SZ United KingdomFULL DATA SIZE: 1.1tb 1. HR 2. Finance 3. Development 4. Confidentiality 5. Users data

Victim:   |  Group: 
US flag

andersonandjones.com 

Company logo
Ransomware Group:

Discovery Date: 2023-11-30 10:02
Estimated Attack Date: 2023-11-17

Sector:
Anderson Jones, PLLC is an award-winning, full-service law firm located in Raleigh, N.C. serving North Carolina and Georgia. Concentrating in the areas of construction law, construction litigation, lien and bond claims, contracts, administrative law, workers’ compensation defense, real estate, employment law, OSHA defense, estate planning, estate administration and settlement, and general commercial litigation, Anderson Jones represents local and national clients in both state and federal courts. Built on the core principles of solid values, integrity in billing, aggressive pursuit of business solutions, efficiency through technology and tenacious representation, Anderson Jones’ attorneys lend leadership, expertise and professionalism in legal matters to always achieve the best attainable results for clients.SITE: www.andersonandjones.com Address 421 N. Blount Street Raleigh, NC 27601 UNITED STATESFULL DATA SIZE: 360gb 1. Health Insurance 2. W-9 forms 3. 401K forms 4. ConfidentialityNETWORK: ANDERSONJONES-------------------------DOMAIN ADMINS------------------------- Administrator Administrator Tmpl aptiis Network Admin SBS Backup User SBSMonAcctandersonjones.local\Administrator ds#$fsKFS3-------------------------DC------------------------- FILESERVER.andersonjones.local 192.168.1.3 Windows Server 2012 R2 Standard-------------------------SERVERS------------------------- RDS-SRV.andersonjones.local 192.168.1.9 Windows Server 2012 R2 Standard 2012-VMHOST-AJ.andersonjones.local 192.168.1.41 Windows Server 2012 R2 Standard DA-SRV.andersonjones.local 192.168.1.8 Windows Server 2012 R2 Standard 2012VMHOST.andersonjones.local Windows Server 2012 R2 Standard JURIS.andersonjones.local 192.168.1.4 Windows Server 2012 R2 Standard

Victim:   |  Group: 
US flag

jacobsfarmdelcabo.com 

Company logo
Ransomware Group:

Discovery Date: 2023-11-29 17:31

Sector:
Jacobs Farm began as a small organic family farm in 1980 on Californias Central Coast, founded by Larry Jacobs and Sandra Belin in 1980. Jacobs Farm produces sustainable crops of healthy, flavorful food for three decades.SITE: www.jacobsfarmdelcabo.comADDDRESS: 303 Potrero St Ste 3, Santa Cruz, California, 95060, United StatesALL DATA SIZE: 405gb 1. Accounting 2. Human Resources 3. Users personal folders and etc…

Victim:   |  Group: 
GB flag

jlgmarine.com 

Company logo
Ransomware Group:

Discovery Date: 2023-11-20 20:52
Estimated Attack Date: 2023-10-28

Sector:
John Lilley & Gillie Ltd has more than 200 years of expertise in the manufacture of the magnetic compass and nautical instrument making has served the marine industry worldwide.SITE: www.jlgmarine.com Address 8 Neptune Court Orion Business Park NE29 7UW North Shields EnglandFULL DATA SIZE: 97gb 1. Finance 2. Confidentiality 3. R&D 4. Users dataNETWORK: JLGMARINE-------------------------DOMAIN ADMINS------------------------- a4ops Administrator biradmin LGadmin sladmin svc_veeamJLGMARINE\LGadmin d33ptr33* JLGMARINE\svc_veeam Jatpat.1-------------------------DC------------------------- LG-DC01.JLGMarine.com 172.18.200.16 Windows Server 2012 Standard LG-BIRDC.JLGMarine.com 172.16.1.5 Windows Server 2012 R2 Standard-------------------------SERVERS------------------------- NS-EPYC-HV.JLGMarine.com 172.18.200.93 Windows Server 2022 Standard NS-Hyper-V.JLGMarine.com 172.18.200.12 Windows Server 2012 R2 Datacenter BIR-Hyper-V.JLGMarine.com 172.16.1.43 Windows Server 2012 R2 Standard BIR-HV-01.JLGMarine.com Windows Server 2012 R2 Standard OneServer.JLGMarine.com 172.18.200.66 Windows Server 2012 R2 Standard R710.JLGMarine.com Windows Server 2012 R2 Standard LIV-HyperV.JLGMarine.com Windows Server 2012 R2 Standard Birmingham-DC.JLGMarine.com Windows Server 2012 R2 Standard LG-BIR-FS.JLGMarine.com Windows Server 2012 R2 Standard LIVERPOOL-DC.JLGMarine.com Windows Server 2012 R2 Standard Ryzen-temp-serv.JLGMarine.com Windows Server 2012 R2 Standard Evaluation LG-RDS01.JLGMarine.com 172.18.200.82 Windows Server 2012 Standard LG-VB01.JLGMarine.com Windows Server 2012 Standard SERVER05.JLGMarine.com 172.18.200.5 Windows Server 2008 R2 Standard SERVER08.JLGMarine.com 172.18.200.77 Windows Server 2008 R2 Standard SERVER07.JLGMarine.com Windows Server 2008 R2 Standard REMOTEAPPS.JLGMarine.com Windows Server 2008 R2 Standard SERVER02.JLGMarine.com 172.18.200.2 Windows Server® 2008 Standard SERVER06.JLGMarine.com 172.18.200.6 Windows Server 2003 SERVER04.JLGMarine.com 172.18.200.4 Windows Server 2003 TDSERVER01.JLGMarine.com Windows Server 2003 SERVER01.JLGMarine.com 172.18.200.1 Windows Server 2003

Victim:   |  Group: 
DK flag

agrovi.dk 

Company logo
Ransomware Group:

Discovery Date: 2023-11-20 14:28
Estimated Attack Date: 2023-11-07

Sector:
[EN] Agrovi provides finance, auditing, trade and counselling services for the agricultural sector.[DK] Agrovi yder rådgivning til landmænd, landboer og andre erhvervsdrivende. Vi er specialister i regenerativt landbrug og holder os selv og vores kunder opdateret med den nyeste teknologi, der styrker dyrkningen af regenerativt landbrug. Vi hjælper dig med at lette din hverdag, ved at lave dit regnskab, hjælpe med byggetilladelser, samt anden juridisk rådgivningSITE: www.agrovi.dk Address : 22 Industrivænget, Hillerod, Capital Region, 3400, DenmarkALL DATA SIZE: 812gb 1. Corporate data 2. Users data, personal users files 3. Group data

Victim:   |  Group: 
US flag

arenaproducts.com 

Company logo
Ransomware Group:

Discovery Date: 2023-11-20 14:27
Estimated Attack Date: 2023-11-07

Sector:
Arena Products is a leading packaging, design and pooling company in North America. With 30 years of experience, we provide a full spectrum of services for the design and development of customized reusable transport packaging systems. Solutions focused and results driven, Arena Products is a company that is differentiated from the rest. Every day, we help our customers cut waste and improve their bottom line by designing, testing, building and pooling custom, reusable transport systems. With our unique approach to cooperative development, Arena Products understands all aspects in the design, development and implementation of reusable transport packaging systems. Through integrated design and engineering to materials and fabrication, we are able to focus on improving efficiency and packaging sustainability, while adding measurable ROI for all involved. An integral part of what we do is providing asset management and logistics infrastructure for every product offering, which range from rugged, space-saving containers to new pallet designs. Combined with our proven track record of innovation, this capability keeps us at the forefront of an industry that requires speed and ingenuity at every level.SITE: www.arenaproducts.com Address : 100 Metro Park Rochester, NY 14623 | (844) 762-0127FULL DATA SIZE: 413gb 1. HR 2. Finance 3. Accounting 4. Confidentiality 5. Customer Files 6. Users data: personal users file(employee forms, SSN, DL employee data and etc)

Victim:   |  Group: 
FR flag

etude-villa.fr 

Company logo
Ransomware Group:

Discovery Date: 2023-11-20 14:27
Estimated Attack Date: 2023-11-08

Sector:
Etude Villa Florek - legal servicesSITE: www.etude-villa.fr Address 18 Rue Néricault Destouches 37013 Tours FranceFULL DATA SIZE: 43gb 1. Finance 2. Accounting 3. Confidentiality 4. Customer Files 5. Users dataNETWORK: ETUDEVILLA-------------------------DOMAIN ADMINS------------------------- admin Admin de réseau adminabsi admininfra Administrateur OGMI SBSMonAcctetudevilla.local\admin @bsi37300 etudevilla.loca\administrateur @bsi37300-------------------------DC------------------------- VM-01-VILLA.etudevilla.local 192.168.36.203 Windows Server 2019 Standard-------------------------SERVERS------------------------- VM-03-VILLA.etudevilla.local 192.168.36.205 Windows Server 2019 Standard HYP-02-VILLA.etudevilla.local 192.168.36.212 Windows Server 2019 Standard VM-04-VILLA.etudevilla.local 192.168.36.206 Windows Server 2019 Standard VM-02-VILLA.etudevilla.local 192.168.36.204 Windows Server 2019 Standard HYP-03-PRET.etudevilla.local Windows Server 2019 Standard HYP-01-VILLA.etudevilla.local 192.168.36.202 Windows Server 2019 Standard VSRV-TOURS-DATA.etudevilla.local Windows Server 2016 Standard SRV-HPRV-villa.etudevilla.local Windows Server 2016 Standard VSRV-TOURS-DC.etudevilla.local Windows Server 2016 Standard VSRV-TOURS-RDS.etudevilla.local Windows Server 2016 Standard SERVTSE.etudevilla.local Windows Server 2008 R2 Standard SERVSYM.etudevilla.local Windows Server 2008 R2 Standard SERVEUR.etudevilla.local Windows Server® 2008 Standard FE

Victim:   |  Group: 
DK flag

edc.dk 

Company logo
Ransomware Group:

Discovery Date: 2023-11-17 13:03

Sector:
[EN] EDC is a real estate company that specializes in buying, selling and valuing real estate.[DK] Vi er Danmarks største ejen­doms­mæg­ler­kæ­de, og det er vi stolte af. Vi tror på, at det er en position, man kun kan forsvare gennem 50 år ved at gøre sit bedste, og derfor gør vi os umage hver eneste dag. *EDC har over 230 selvstændige butikker over hele landet og cirka 1.600 medarbejdere. Det betyder, at der altid er en lokalkendt mægler i nærheden af dig, der kan hjælpe dig med din bolighandel - uanset om du skal købe, sælge eller bare er nysgerrig på boligmarkedet. *SITE: www.edc.dk Address : EDC Gruppen A/S Mynstersvej 5, 1827 Frederiksberg C Tlf.: 33 26 77 77ALL DATA SIZE: 2.5tb 1. Administration 2. Human Resources 3. Client files 4. GDPR 5. Finance And etcNETWORK: EDCHYPER-V HOSTS Windows Server 2019 Datacenter OPS01 Windows Server 2016 Datacenter TFSBUILD05-------------------------DOMAIN ADMINS------------------------- EDC\kkadm EqmJUpBi8ZhZM_123 EDC\baadm EqmJUpBi8ZhZM_123-------------------------DC------------------------- EDCDC02.edc.local 192.168.225.45 Windows Server 2019 Standard EDCDC04.edc.local 192.168.225.75 Windows Server 2019 Standard EDCDC03.edc.local 192.168.225.60 Windows Server 2019 Standard EDCDC01.edc.local 192.168.225.245 Windows Server 2019 Standard-------------------------SERVERS------------------------- Images04.edc.local 192.168.229.104 Windows Server 2022 Datacenter UAT-FPDKWEB05.edc.local 192.168.231.103 Windows Server 2022 Datacenter TEST-FPWEB01.edc.local 192.168.231.108 Windows Server 2022 Datacenter Images03.edc.local 192.168.229.103 Windows Server 2022 Datacenter UAT-Images01.edc.local 192.168.229.58 Windows Server 2022 Datacenter WSUS02.edc.local 192.168.225.173 Windows Server 2022 Datacenter McAfee01.edc.local 192.168.225.178 Windows Server 2022 Datacenter Images01.edc.local 192.168.229.101 Windows Server 2022 Datacenter Images02.edc.local 192.168.229.102 Windows Server 2022 Datacenter FTP01.edc.local 192.168.229.106 Windows Server 2022 Datacenter CAPA-PUB01.edc.local 192.168.229.84 Windows Server 2022 Standard Teamsmigration1.edc.local 192.168.240.158 Windows Server 2022 Standard UAT-FPFile01.edc.local 192.168.231.43 Windows Server 2022 Standard UAT-EDCFile01.edc.local 192.168.231.41 Windows Server 2022 Standard EDCFile02.edc.local 192.168.225.50 Windows Server 2022 Standard DWH01.edc.local 192.168.225.152 Windows Server 2022 Standard Teamsmigration2.edc.local 192.168.240.131 Windows Server 2022 Standard LogicMonitor01.edc.local 192.168.225.220 Windows Server 2022 Standard NPS01.edc.local 192.168.225.111 Windows Server 2022 Standard Printadm01.edc.local 192.168.240.124 Windows Server 2022 Standard NDES01.edc.local 192.168.225.112 Windows Server 2022 Standard McafeeDMZ.edc.local 192.168.229.85 Windows Server 2022 Standard FPFile01.edc.local 192.168.225.66 Windows Server 2022 Standard FPWEB02.edc.local 192.168.229.147 Windows Server 2022 Standard FPWEB01.edc.local 192.168.229.146 Windows Server 2022 Standard EXmgt.edc.local 192.168.240.195 Windows Server 2022 Standard DEV-FPDKWEB05.edc.local 192.168.235.104 Windows Server 2022 Standard DHCP01.edc.local 192.168.240.6 Windows Server 2022 Standard NPS02.edc.local 192.168.225.109 Windows Server 2022 Standard DHCP02.edc.local 192.168.240.7 Windows Server 2022 Standard LEA-Unikapp.edc.local 192.168.240.196 Windows Server 2022 Standard EDCFile01.edc.local 192.168.225.49 Windows Server 2022 Standard PATCH-FPWEB01.edc.local 192.168.231.98 Windows Server 2022 Standard PATCH-FPWEB02.edc.local 192.168.231.99 Windows Server 2022 Standard Movere01.edc.local 192.168.240.150 Windows Server 2022 Standard LOGANALYZER.edc.local 192.168.240.20 Windows Server 2019 Datacenter CAUEDCSQcv9.edc.local 192.168.225.139 Windows Server 2019 Datacenter PRODSQLEDCI.edc.local Windows Server 2019 Datacenter prodsqledcinfra.edc.local 192.168.225.190 Windows Server 2019 Datacenter EDCSQLCL-05-06.edc.local 192.168.225.141 Windows Server 2019 Datacenter Lansweeper01.edc.local 192.168.225.228 Windows Server 2019 Datacenter EDCSQL05.edc.local 192.168.225.139 Windows Server 2019 Datacenter MAPtoolkit.edc.local 192.168.240.200 Windows Server 2019 Datacenter Print02.edc.local 192.168.240.154 Windows Server 2019 Datacenter Powerremote02.edc.local 192.168.240.135 Windows Server 2019 Datacenter EDCSQL06.edc.local Windows Server 2019 Datacenter KMSSrv02.edc.local Windows Server 2019 Datacenter Domiservice04.edc.local 192.168.240.123 Windows Server 2019 Datacenter Certservice02.edc.local 192.168.240.144 Windows Server 2019 Datacenter GDPR01.edc.local 192.168.240.142 Windows Server 2019 Datacenter DWH-GW.edc.local 192.168.240.197 Windows Server 2019 Datacenter CapaDP01.edc.local 192.168.240.140 Windows Server 2019 Datacenter UAT-WS01-ex.edc.local 192.168.231.55 Windows Server 2019 Datacenter UAT-WS02-ex.edc.local 192.168.231.56 Windows Server 2019 Datacenter T0-Infra01.edc.local Windows Server 2019 Datacenter addirsync01.edc.local 192.168.240.167 Windows Server 2019 Datacenter RDP01.edc.local Windows Server 2019 Datacenter Doccapture02.edc.local 192.168.240.129 Windows Server 2019 Datacenter Print01.edc.local 192.168.240.168 Windows Server 2019 Datacenter CapaTest03.edc.local Windows Server 2019 Datacenter T1-Mgmt01.edc.local 192.168.240.128 Windows Server 2019 Datacenter LEASQL01.edc.local 192.168.225.189 Windows Server 2019 Datacenter Elasticsearch02.edc.local Windows Server 2019 Datacenter DWH-GATEWAY.edc.local 192.168.240.175 Windows Server 2019 Datacenter PRODSQLLEA.edc.local 192.168.225.189 Windows Server 2019 Datacenter PRODSQLLEA2.edc.local Windows Server 2019 Datacenter T0-Mgmt01.edc.local 192.168.240.177 Windows Server 2019 Datacenter VeeamO365.edc.local 192.168.240.147 Windows Server 2019 Datacenter LEASQLCL.edc.local Windows Server 2019 Datacenter Test-batchapp01.edc.local 192.168.235.112 Windows Server 2019 Datacenter DOMISERVICE01.edc.local 192.168.240.122 Windows Server 2019 Datacenter TFSBUILD08.edc.local 192.168.240.121 Windows Server 2019 Datacenter WSUS01.edc.local 192.168.225.176 Windows Server 2019 Datacenter Test-WS01.edc.local 192.168.235.110 Windows Server 2019 Datacenter EDCTS01.edc.local 192.168.240.223 Windows Server 2019 Datacenter VeeamOne.edc.local 192.168.111.22 Windows Server 2019 Datacenter ADTools01.edc.local 192.168.225.110 Windows Server 2019 Datacenter UAT-FPDKWEB03.edc.local Windows Server 2019 Datacenter Logicmonitor02.edc.local 192.168.225.221 Windows Server 2019 Datacenter LogicMonitor03.edc.local 192.168.225.222 Windows Server 2019 Datacenter Ops01.edc.local 192.168.225.46 Windows Server 2019 Datacenter WS02-ex.edc.local 192.168.228.62 Windows Server 2019 Datacenter LogicMonitor04.edc.local 192.168.225.223 Windows Server 2019 Datacenter UAT-WS02-in.edc.local 192.168.231.54 Windows Server 2019 Datacenter WS01-ex.edc.local 192.168.228.61 Windows Server 2019 Datacenter SKYNET.edc.local 192.168.240.202 Windows Server 2019 Datacenter Dev-images01.edc.local 192.168.235.55 Windows Server 2019 Datacenter DEV-WS01.edc.local 192.168.235.58 Windows Server 2019 Datacenter UAT-WS01-in.edc.local 192.168.231.53 Windows Server 2019 Datacenter req13401.edc.local Windows Server 2019 Standard VeeamProxy04.edc.local Windows Server 2019 Standard REQ89101.edc.local 10.8.92.2 Windows Server 2019 Standard REQ10901.edc.local 10.1.9.1 Windows Server 2019 Standard QUORUM01.edc.local Windows Server 2019 Standard REQ67401.edc.local Windows Server 2019 Standard REQ87401.edc.local 10.8.74.1 Windows Server 2019 Standard REQ40101.edc.local 10.4.1.1 Windows Server 2019 Standard splunk.edc.local 192.168.222.186 Windows Server 2019 Standard CERTSERVICE01.edc.local 192.168.222.177 Windows Server 2019 Standard REQ26501.edc.local Windows Server 2019 Standard REQ98101.edc.local 10.9.81.1 Windows Server 2019 Standard REQ14701.edc.local Windows Server 2019 Standard REQ12801.edc.local Windows Server 2019 Standard REQ67301.edc.local Windows Server 2019 Standard REQ79001.edc.local 10.7.90.1 Windows Server 2019 Standard REQ99401.edc.local Windows Server 2019 Standard REQ69701.edc.local 10.6.97.1 Windows Server 2019 Standard REQ80001.edc.local 10.8.0.1 Windows Server 2019 Standard REQ94801.edc.local 10.9.48.1 Windows Server 2019 Standard REQ96901.edc.local 10.9.69.1 Windows Server 2019 Standard VeeamProxy01.edc.local Windows Server 2019 Standard REQ82401.edc.local 10.8.24.1 Windows Server 2019 Standard Veeambackup01.edc.local 192.168.225.229 Windows Server 2019 Standard T0-VeeamProxy01.edc.local 192.168.240.124 Windows Server 2019 Standard REQ12301.edc.local Windows Server 2019 Standard REQ78601.edc.local 10.7.86.1 Windows Server 2019 Standard REQ62301.edc.local 10.6.23.1 Windows Server 2019 Standard FILESERVER03.edc.local 192.168.222.201 Windows Server 2019 Standard REQ67101.edc.local 10.6.71.1 Windows Server 2019 Standard VeeamO365Proxy1.edc.local 192.168.240.148 Windows Server 2019 Standard WEBTEST01.edc.local 192.168.222.196 Windows Server 2019 Standard REQ92401.edc.local 10.9.24.1 Windows Server 2019 Standard REQ83201.edc.local Windows Server 2019 Standard REQ97001.edc.local 10.9.70.1 Windows Server 2019 Standard REQ11802.edc.local 10.1.18.2 Windows Server 2019 Standard TFSBUILD10.edc.local 192.168.240.193 Windows Server 2019 Standard VeeamO365Proxy2.edc.local 192.168.240.125 Windows Server 2019 Standard DEV-DOMISERVICE01.edc.local 192.168.240.183 Windows Server 2019 Standard TEST-DomiServ01.edc.local 192.168.240.182 Windows Server 2019 Standard ADSelfService01.edc.local 192.168.229.105 Windows Server 2019 Standard REQ93001.edc.local 10.9.30.1 Windows Server 2019 Standard REQ95301.edc.local 10.9.53.1 Windows Server 2019 Standard REQ13201.edc.local 10.1.32.1 Windows Server 2019 Standard REQ13101.edc.local 10.8.30.2 Windows Server 2019 Standard VeeamMedia01.edc.local Windows Server 2019 Standard REQ93801.edc.local 10.9.38.1 Windows Server 2019 Standard VeeamProxy02.edc.local Windows Server 2019 Standard MBAM01.edc.local Windows Server 2019 Standard VeeamProxy03.edc.local 192.168.111.20 Windows Server 2019 Standard REQ29701.edc.local Windows Server 2019 Standard TFSBuild09.edc.local 192.168.240.119 Windows Server 2019 Standard req82101.edc.local 10.8.21.1 Windows Server 2019 Standard req88201.edc.local 10.8.82.1 Windows Server 2019 Standard REQ86101.edc.local 10.8.61.1 Windows Server 2019 Standard req83701.edc.local 10.8.37.1 Windows Server 2019 Standard REQ60201.edc.local 10.6.2.1 Windows Server 2019 Standard req94601.edc.local Windows Server 2019 Standard REQ68001.edc.local 10.6.80.1 Windows Server 2019 Standard FPAPP-INT01.edc.local 192.168.225.83 Windows Server 2016 Datacenter TEST-EDCDKWEB01.edc.local Windows Server 2016 Datacenter UAT-FPSQLCL2017.edc.local Windows Server 2016 Datacenter dev-fpapp01.edc.local 192.168.235.120 Windows Server 2016 Datacenter EDCSQL11.edc.local 192.168.225.196 Windows Server 2016 Datacenter SQLMon.edc.local 192.168.240.19 Windows Server 2016 Datacenter Navi-App02.edc.local 192.168.240.228 Windows Server 2016 Datacenter TEST-Erhverv-BatchApp.edc.local 192.168.237.20 Windows Server 2016 Datacenter DWH02.edc.local Windows Server 2016 Datacenter DEV-FPSQL01.edc.local 192.168.235.69 Windows Server 2016 Datacenter UATSQLFPread.edc.local 192.168.231.81 Windows Server 2016 Datacenter UAT-EDCSQL05.edc.local 192.168.231.90 Windows Server 2016 Datacenter Test-edcweb01.edc.local 192.168.235.111 Windows Server 2016 Datacenter Navi-Dev.edc.local 192.168.235.13 Windows Server 2016 Datacenter UAT-EDCSQL04.edc.local 192.168.231.87 Windows Server 2016 Datacenter Navi-SQL02.edc.local 192.168.240.229 Windows Server 2016 Datacenter UAT-CRM-INT01.edc.local Windows Server 2016 Datacenter EDCSQL14.edc.local 192.168.225.218 Windows Server 2016 Datacenter WS01-in.edc.local 192.168.225.61 Windows Server 2016 Datacenter EDCSQL12.edc.local 192.168.225.195 Windows Server 2016 Datacenter Patch-EDCSQL01.edc.local Windows Server 2016 Datacenter edcweb01-in.edc.local 192.168.225.63 Windows Server 2016 Datacenter EDCSQLCL2016.edc.local 192.168.225.197 Windows Server 2016 Datacenter UATSQLFP.edc.local 192.168.231.80 Windows Server 2016 Datacenter UAT-EDCWEB02-ex.edc.local 192.168.231.60 Windows Server 2016 Datacenter CRM-INT01.edc.local Windows Server 2016 Datacenter FPAPP-INT02.edc.local 192.168.225.84 Windows Server 2016 Datacenter ELASTICSEARCH01.edc.local 192.168.240.174 Windows Server 2016 Datacenter WS02-in.edc.local 192.168.225.62 Windows Server 2016 Datacenter UAT-FPSQL04.edc.local 192.168.231.84 Windows Server 2016 Datacenter DEV-EDCSQL01.edc.local 192.168.235.95 Windows Server 2016 Datacenter UAT-EDCWEB01-ex.edc.local 192.168.231.59 Windows Server 2016 Datacenter UAT-EDCWEB01-in.edc.local 192.168.231.57 Windows Server 2016 Datacenter FPSQL2017.edc.local 192.168.225.171 Windows Server 2016 Datacenter uat-fpapp02.edc.local 192.168.222.123 Windows Server 2016 Datacenter FPAPP-EXT01.edc.local 192.168.225.208 Windows Server 2016 Datacenter EDCSQL13.edc.local 192.168.225.217 Windows Server 2016 Datacenter UAT-EDCSQLCL16.edc.local 192.168.231.88 Windows Server 2016 Datacenter PRODSQLEDCAnalyse.edc.local 192.168.225.160 Windows Server 2016 Datacenter PRODSQLFPREAD.edc.local 192.168.225.136 Windows Server 2016 Datacenter UAT-EDCSQL03.edc.local 192.168.231.86 Windows Server 2016 Datacenter FPSQL03.edc.local 192.168.225.169 Windows Server 2016 Datacenter Test-EDCSQL01.edc.local 192.168.235.115 Windows Server 2016 Datacenter UAT-EDCWEB02-in.edc.local 192.168.231.58 Windows Server 2016 Datacenter Domiservice02.edc.local 192.168.240.25 Windows Server 2016 Datacenter UAT-BatchApp01.edc.local 192.168.231.21 Windows Server 2016 Datacenter UAT-FPSQL03.edc.local 192.168.231.83 Windows Server 2016 Datacenter BatchApp01.edc.local 192.168.225.28 Windows Server 2016 Datacenter FPSQL04.edc.local 192.168.225.170 Windows Server 2016 Datacenter FPAPP-EXT02.edc.local 192.168.225.209 Windows Server 2016 Datacenter Patch-fpapp01.edc.local 192.168.222.116 Windows Server 2016 Datacenter edcweb02-in.edc.local 192.168.225.64 Windows Server 2016 Datacenter UAT-DWH02.edc.local Windows Server 2016 Datacenter EDCDKWEB01.edc.local 192.168.228.201 Windows Server 2016 Datacenter UATEDCSQL2016.edc.local Windows Server 2016 Datacenter UATSQLEDCRD16.edc.local Windows Server 2016 Datacenter UAT-Intranet01.edc.local Windows Server 2016 Datacenter DEV-EDCWEB01.edc.local 192.168.235.31 Windows Server 2016 Datacenter DEVSQLEDC.edc.local 192.168.235.93 Windows Server 2016 Datacenter UAT-EDCDKWEB01.edc.local 192.168.231.110 Windows Server 2016 Datacenter EDCDKWEB06.edc.local Windows Server 2016 Datacenter UAT-EDCDKWEB02.edc.local 192.168.231.111 Windows Server 2016 Datacenter UATSQLEDCREAD.edc.local 192.168.231.89 Windows Server 2016 Datacenter TFSBuild05.edc.local 192.168.240.153 Windows Server 2016 Datacenter EDCDKWEB04.edc.local 192.168.228.204 Windows Server 2016 Datacenter edcweb02-ex.edc.local 192.168.229.117 Windows Server 2016 Datacenter DEV-CRM-INT01.edc.local Windows Server 2016 Datacenter edcweb01-ex.edc.local 192.168.229.116 Windows Server 2016 Datacenter UATSQLEDCREAD2016.edc.local Windows Server 2016 Datacenter EDCDKWEB02.edc.local 192.168.228.202 Windows Server 2016 Datacenter EDCDKWEB03.edc.local 192.168.228.203 Windows Server 2016 Datacenter EDCDKWEB05.edc.local Windows Server 2016 Datacenter UAAFPSQL2017.edc.local Windows Server 2016 Datacenter demo-edcdkweb01.edc.local Windows Server 2016 Datacenter uat-fpapp01.edc.local 192.168.222.117 Windows Server 2016 Datacenter TEST-CRM-INT01.edc.local Windows Server 2016 Datacenter uat-fpapp03.edc.local 192.168.222.124 Windows Server 2016 Datacenter Test-EDCSQL03.edc.local 192.168.235.117 Windows Server 2016 Datacenter DEV-Batchapp01.edc.local 192.168.235.54 Windows Server 2016 Datacenter UAT-Domiserv02.edc.local 192.168.231.120 Windows Server 2016 Datacenter patchsqlfp.edc.local 192.168.231.82 Windows Server 2016 Datacenter PRODSQLEDCREAD.edc.local 192.168.225.150 Windows Server 2016 Datacenter Erhverv-Batchapp.edc.local 192.168.237.10 Windows Server 2016 Datacenter PRODSQLEDC.edc.local 192.168.225.172 Windows Server 2016 Datacenter Test-EDCSQL02.edc.local 192.168.235.116 Windows Server 2016 Datacenter UATSQLEDC.edc.local 192.168.231.93 Windows Server 2016 Datacenter DEV-EDCSQLCL.edc.local Windows Server 2016 Datacenter uatedcsqlread.edc.local 192.168.231.89 Windows Server 2016 Datacenter PRODSQLFP.edc.local 192.168.225.184 Windows Server 2016 Datacenter req87501.edc.local 10.8.75.1 Windows Server 2016 Standard REQ17801.edc.local Windows Server 2016 Standard REQ87001.edc.local 10.8.70.1 Windows Server 2016 Standard REQ71001.edc.local Windows Server 2016 Standard REQ21001.edc.local 10.2.10.1 Windows Server 2016 Standard REQ95701.edc.local 10.9.57.1 Windows Server 2016 Standard REQ92301.edc.local 10.9.23.1 Windows Server 2016 Standard REQ85201.edc.local Windows Server 2016 Standard REQ12502.edc.local Windows Server 2016 Standard REQ20001.edc.local 10.2.0.1 Windows Server 2016 Standard REQ99901.edc.local Windows Server 2016 Standard REQ34601.edc.local Windows Server 2016 Standard NAVI-APP01.edc.local 192.168.240.188 Windows Server 2016 Standard REQ82601.edc.local 10.8.26.1 Windows Server 2016 Standard REQ65801.edc.local Windows Server 2016 Standard FPBUILD01-new.edc.local 192.168.240.200 Windows Server 2016 Standard VeeamProxy05.edc.local Windows Server 2016 Standard REQ89001.edc.local Windows Server 2016 Standard REQ61701.edc.local 10.6.17.1 Windows Server 2016 Standard REQ90101.edc.local Windows Server 2016 Standard req26701.edc.local Windows Server 2016 Standard TFSBuild03.edc.local 192.168.240.166 Windows Server 2016 Standard REQ83001.edc.local 10.8.30.1 Windows Server 2016 Standard Bremerholm01.edc.local 10.1.18.90 Windows Server 2016 Standard REQ73301.edc.local Windows Server 2016 Standard REQ13801.edc.local Windows Server 2016 Standard REQ11701.edc.local 10.1.17.1 Windows Server 2016 Standard REQ94401.edc.local 10.9.44.1 Windows Server 2016 Standard REQ60901.edc.local 10.6.9.1 Windows Server 2016 Standard KMSSRV01.edc.local 192.168.225.76 Windows Server 2016 Standard TFSBuild02.edc.local 192.168.240.112 Windows Server 2016 Standard req32701.edc.local Windows Server 2016 Standard TFSBuild04.edc.local 192.168.240.120 Windows Server 2016 Standard req83101.edc.local 10.8.31.1 Windows Server 2016 Standard req77101.edc.local 10.7.71.1 Windows Server 2016 Standard VeeamProxy06.edc.local Windows Server 2016 Standard REQ10701.edc.local Windows Server 2016 Standard REQ93301.edc.local 10.9.33.1 Windows Server 2016 Standard REQ17701.edc.local Windows Server 2016 Standard REQ26101.edc.local Windows Server 2016 Standard req83301.edc.local 10.8.33.1 Windows Server 2016 Standard req83801.edc.local 10.8.38.1 Windows Server 2016 Standard REQ28301.edc.local Windows Server 2016 Standard hp_buffer_01.edc.local Windows Server 2016 Standard REQ82701.edc.local 10.8.27.1 Windows Server 2016 Standard REQ11001.edc.local 10.1.1.176 Windows Server 2016 Standard REQ61501.edc.local 10.6.15.1 Windows Server 2016 Standard MAILSIGNATUR01.edc.local Windows Server 2012 R2 Datacenter REQ69201.edc.local 10.6.92.1 Windows Server 2012 R2 Standard REQ55501.edc.local Windows Server 2012 R2 Standard REQ84101.edc.local 10.8.41.1 Windows Server 2012 R2 Standard REQ67701.edc.local Windows Server 2012 R2 Standard REQ50301.edc.local 10.5.3.1 Windows Server 2012 R2 Standard REQ55001.edc.local 10.5.50.1 Windows Server 2012 R2 Standard REQ64201.edc.local 10.6.42.1 Windows Server 2012 R2 Standard REQ71401.edc.local 10.7.14.1 Windows Server 2012 R2 Standard REQ52701.edc.local 10.5.27.1 Windows Server 2012 R2 Standard REQ61301.edc.local 10.6.13.1 Windows Server 2012 R2 Standard REQ64001.edc.local Windows Server 2012 R2 Standard REQ67201.edc.local 10.6.72.1 Windows Server 2012 R2 Standard REQ55801.edc.local 10.5.58.1 Windows Server 2012 R2 Standard req62701.edc.local 10.6.27.1 Windows Server 2012 R2 Standard REQ47101.edc.local 10.4.71.1 Windows Server 2012 R2 Standard REQ69501.edc.local 10.6.95.1 Windows Server 2012 R2 Standard req61001.edc.local Windows Server 2012 R2 Standard CRMBack02.edc.local Windows Server 2012 R2 Standard REQ72001.edc.local 10.7.20.1 Windows Server 2012 R2 Standard DWH01-Gateway.edc.local Windows Server 2012 R2 Standard REQ64301.edc.local 10.6.43.1 Windows Server 2012 R2 Standard REQ61101.edc.local 10.6.11.1 Windows Server 2012 R2 Standard REQ71701.edc.local 10.7.17.1 Windows Server 2012 R2 Standard CRMBack01.edc.local Windows Server 2012 R2 Standard REQ48501.edc.local 10.4.85.1 Windows Server 2012 R2 Standard REQ84001.edc.local 10.8.40.1 Windows Server 2012 R2 Standard REQ12601.edc.local 10.1.26.1 Windows Server 2012 R2 Standard REQ86301.edc.local Windows Server 2012 R2 Standard REQ90001.edc.local Windows Server 2012 R2 Standard REQ91501.edc.local 10.9.15.1 Windows Server 2012 R2 Standard REQ96401.edc.local 10.9.64.1 Windows Server 2012 R2 Standard REQ91201.edc.local 10.9.12.1 Windows Server 2012 R2 Standard REQ95601.edc.local Windows Server 2012 R2 Standard REQ91101.edc.local Windows Server 2012 R2 Standard REQ47501.edc.local 10.4.75.1 Windows Server 2012 R2 Standard REQ48001.edc.local 10.4.80.1 Windows Server 2012 R2 Standard REQ49201.edc.local 10.4.92.1 Windows Server 2012 R2 Standard REQ87101.edc.local 10.8.71.1 Windows Server 2012 R2 Standard REQ87201.edc.local Windows Server 2012 R2 Standard Patch-CRM01.edc.local Windows Server 2012 R2 Standard REQ71601.edc.local 10.7.16.1 Windows Server 2012 R2 Standard REQ71101.edc.local Windows Server 2012 R2 Standard REQ52101.edc.local Windows Server 2012 R2 Standard REQ75201.edc.local 10.7.52.1 Windows Server 2012 R2 Standard REQ62001.edc.local 10.6.11.44 Windows Server 2012 R2 Standard REQ68801.edc.local 10.6.88.1 Windows Server 2012 R2 Standard REQ57501.edc.local Windows Server 2012 R2 Standard REQ71501.edc.local 10.7.15.1 Windows Server 2012 R2 Standard REQ69601.edc.local 10.6.96.1 Windows Server 2012 R2 Standard REQ91301.edc.local 10.9.13.1 Windows Server 2012 R2 Standard REQ37101.edc.local 10.3.71.1 Windows Server 2012 R2 Standard REQ60301.edc.local 10.6.3.1 Windows Server 2012 R2 Standard REQ68301.edc.local 10.6.83.1 Windows Server 2012 R2 Standard req27201.edc.local Windows Server 2012 R2 Standard REQ74801.edc.local 10.7.48.1 Windows Server 2012 R2 Standard REQ95201.edc.local 10.9.52.1 Windows Server 2012 R2 Standard REQ50101.edc.local 10.5.1.1 Windows Server 2012 R2 Standard ADFS01.edc.local Windows Server 2012 R2 Standard ADFS02.edc.local Windows Server 2012 R2 Standard req46801.edc.local 10.4.68.1 Windows Server 2012 R2 Standard REQ84601.edc.local 10.8.46.1 Windows Server 2012 R2 Standard REQ71201.edc.local Windows Server 2012 R2 Standard REQ95801.edc.local Windows Server 2012 R2 Standard REQ67601.edc.local Windows Server 2012 R2 Standard PRODSQLEDCint.edc.local Windows Server 2012 R2 Standard REQ59001.edc.local 10.5.90.1 Windows Server 2012 R2 Standard REQ96701.edc.local Windows Server 2012 R2 Standard DEV-CRM01.edc.local Windows Server 2012 R2 Standard EDCSQLCL2.edc.local Windows Server 2012 R2 Standard REQ48701.edc.local 10.4.87.1 Windows Server 2012 R2 Standard TFSSQL02.edc.local Windows Server 2012 R2 Standard REQ68701.edc.local 10.6.87.1 Windows Server 2012 R2 Standard REQ86001.edc.local 10.8.60.1 Windows Server 2012 R2 Standard REQ70501.edc.local Windows Server 2012 R2 Standard REQ47701.edc.local Windows Server 2012 R2 Standard REQ47801.edc.local 10.4.78.1 Windows Server 2012 R2 Standard REQ94001.edc.local 10.9.40.1 Windows Server 2012 R2 Standard Req87601.edc.local 10.8.76.1 Windows Server 2012 R2 Standard TFS02.edc.local Windows Server 2012 R2 Standard CRMFront02.edc.local Windows Server 2012 R2 Standard TopDesk01.edc.local Windows Server 2012 R2 Standard REQ43001.edc.local 10.4.30.1 Windows Server 2012 R2 Standard Req85301.edc.local 10.8.53.1 Windows Server 2012 R2 Standard REQ29901.edc.local Windows Server 2012 R2 Standard req47001.edc.local 10.4.70.1 Windows Server 2012 R2 Standard REQ77601.edc.local 10.7.76.1 Windows Server 2012 R2 Standard TSM01.edc.local Windows Server 2012 R2 Standard Test-CRM01.edc.local Windows Server 2012 R2 Standard REQ44101.edc.local 10.4.41.1 Windows Server 2012 R2 Standard REQ14801.edc.local Windows Server 2012 R2 Standard REQ82201.edc.local 10.8.22.1 Windows Server 2012 R2 Standard REQ28201.edc.local Windows Server 2012 R2 Standard REQ83601.edc.local 10.8.36.1 Windows Server 2012 R2 Standard REQ28401.edc.local Windows Server 2012 R2 Standard UAT-CRM01.edc.local Windows Server 2012 R2 Standard REQ44701.edc.local 10.4.47.1 Windows Server 2012 R2 Standard REQ50201.edc.local 10.5.2.1 Windows Server 2012 R2 Standard REQ51101.edc.local 10.5.11.1 Windows Server 2012 R2 Standard LEA-UnikApp-old.edc.local Windows Server 2012 R2 Standard REQ42301.edc.local Windows Server 2012 R2 Standard DocCapture01.edc.local Windows Server 2012 R2 Standard CRMFront01.edc.local Windows Server 2012 R2 Standard REQ26601.edc.local 10.2.66.1 Windows Server 2012 R2 Standard UAT-DomiServ01.edc.local Windows Server 2012 R2 Standard REQ98401.edc.local 10.9.84.1 Windows Server 2012 R2 Standard PRODSQLEDCint2.edc.local 192.168.225.190 Windows Server 2012 R2 Standard REq11301.edc.local 10.1.20.2 Windows Server 2012 R2 Standard Req53001.edc.local 10.5.30.1 Windows Server 2012 R2 Standard REQ54501.edc.local 10.5.45.1 Windows Server 2012 R2 Standard REQ17501.edc.local 10.1.75.1 Windows Server 2012 R2 Standard REQ33201.edc.local 10.3.32.1 Windows Server 2012 R2 Standard REQ13601.edc.local 10.1.36.1 Windows Server 2012 R2 Standard REQ36601.edc.local 10.3.66.1 Windows Server 2012 R2 Standard REQ85101.edc.local 10.8.51.1 Windows Server 2012 R2 Standard REQ43101.edc.local 10.4.31.1 Windows Server 2012 R2 Standard CRMReport01.edc.local Windows Server 2012 R2 Standard DevDocuments.edc.local Windows Server 2012 R2 Standard REQ20101.edc.local Windows Server 2012 R2 Standard REQ22001.edc.local Windows Server 2012 R2 Standard REQ26401.edc.local Windows Server 2012 R2 Standard REQ71301.edc.local 10.7.13.1 Windows Server 2012 R2 Standard REQ13901.edc.local Windows Server 2012 R2 Standard REQ28601.edc.local Windows Server 2012 R2 Standard REQ92101.edc.local Windows Server 2012 R2 Standard REQ99001.edc.local 10.9.90.1 Windows Server 2012 R2 Standard REQ23201.edc.local Windows Server 2012 R2 Standard REQ25601.edc.local 10.2.56.1 Windows Server 2012 R2 Standard REQ26301.edc.local Windows Server 2012 R2 Standard REQ29101.edc.local Windows Server 2012 R2 Standard REQ23001.edc.local 10.2.30.1 Windows Server 2012 R2 Standard REQ12401.edc.local Windows Server 2012 R2 Standard REQ47601.edc.local Windows Server 2012 R2 Standard REQ42201.edc.local Windows Server 2012 R2 Standard UAT-FPDKWEB04.edc.local Windows Server 2012 R2 Standard REQ14501.edc.local 10.1.45.1 Windows Server 2012 R2 Standard REQ28801.edc.local 10.2.88.1 Windows Server 2012 R2 Standard REQ60801.edc.local 10.6.8.1 Windows Server 2012 R2 Standard FPBUILD01.edc.local Windows Server 2012 R2 Standard REQ36001.edc.local 10.3.60.1 Windows Server 2012 R2 Standard REQ80201.edc.local Windows Server 2012 R2 Standard DEV-FPDKWEB03.edc.local Windows Server 2012 R2 Standard DEV-FPDKWEB04.edc.local Windows Server 2012 R2 Standard REQ24401.edc.local 10.2.44.1 Windows Server 2012 R2 Standard REQ36501.edc.local 10.3.65.1 Windows Server 2012 R2 Standard REQ77001.edc.local Windows Server 2012 R2 Standard req35401.edc.local Windows Server 2012 R2 Standard REQ91001.edc.local 10.9.10.1 Windows Server 2012 R2 Standard REQ88101.edc.local 10.8.81.1 Windows Server 2012 R2 Standard Req70001.edc.local 10.7.0.1 Windows Server 2012 R2 Standard REQ60701.edc.local Windows Server 2012 R2 Standard REQ21601.edc.local Windows Server 2012 R2 Standard REQ57201.edc.local Windows Server 2012 R2 Standard REQ30101.edc.local Windows Server 2012 R2 Standard REQ43401.edc.local 10.4.34.1 Windows Server 2012 R2 Standard REQ86801.edc.local 10.8.68.1 Windows Server 2012 R2 Standard REQ17301.edc.local Windows Server 2012 R2 Standard REQ50001.edc.local 10.5.0.1 Windows Server 2012 R2 Standard REQ34001.edc.local Windows Server 2012 R2 Standard REQ33801.edc.local 10.3.38.1 Windows Server 2012 R2 Standard REQ70701.edc.local 10.7.7.1 Windows Server 2012 R2 Standard REQ40401.edc.local 10.4.4.1 Windows Server 2012 R2 Standard REQ41001.edc.local 10.4.10.1 Windows Server 2012 R2 Standard REQ33601.edc.local Windows Server 2012 R2 Standard REQ33001.edc.local Windows Server 2012 R2 Standard REQ26801.edc.local Windows Server 2012 R2 Standard REQ27701.edc.local 10.2.77.1 Windows Server 2012 R2 Standard REQ27301.edc.local 10.2.73.1 Windows Server 2012 R2 Standard REQ32301.edc.local Windows Server 2012 R2 Standard REQ29201.edc.local Windows Server 2012 R2 Standard REQ27401.edc.local Windows Server 2012 R2 Standard REQ41801.edc.local 10.4.18.1 Windows Server 2012 R2 Standard REQ43301.edc.local Windows Server 2012 R2 Standard REQ46701.edc.local Windows Server 2012 R2 Standard REQ45501.edc.local 10.4.55.1 Windows Server 2012 R2 Standard REQ49301.edc.local 10.4.93.1 Windows Server 2012 R2 Standard REQ61801.edc.local 10.6.18.1 Windows Server 2012 R2 Standard REQ44501.edc.local 10.4.45.1 Windows Server 2012 R2 Standard REQ45001.edc.local 10.4.50.1 Windows Server 2012 R2 Standard REQ60401.edc.local 10.6.4.1 Windows Server 2012 R2 Standard REQ42901.edc.local 10.4.29.1 Windows Server 2012 R2 Standard REQ41701.edc.local 10.4.17.1 Windows Server 2012 R2 Standard REQ46101.edc.local 10.4.61.1 Windows Server 2012 R2 Standard REQ70601.edc.local 10.7.6.1 Windows Server 2012 R2 Standard REQ68501.edc.local Windows Server 2012 R2 Standard REQ35301.edc.local Windows Server 2012 R2 Standard REQ54701.edc.local 10.5.47.1 Windows Server 2012 R2 Standard REQ54901.edc.local 10.5.49.1 Windows Server 2012 R2 Standard REQ37901.edc.local 10.3.79.1 Windows Server 2012 R2 Standard REQ56801.edc.local 10.5.68.1 Windows Server 2012 R2 Standard REQ56101.edc.local 10.5.61.1 Windows Server 2012 R2 Standard REQ56001.edc.local 10.5.60.1 Windows Server 2012 R2 Standard REQ28901.edc.local 10.2.89.1 Windows Server 2012 R2 Standard REQ27601.edc.local Windows Server 2012 R2 Standard REQ89201.edc.local 10.8.92.1 Windows Server 2012 R2 Standard REQ52501.edc.local 10.5.25.1 Windows Server 2012 R2 Standard REQ54101.edc.local 10.5.41.1 Windows Server 2012 R2 Standard REQ27901.edc.local Windows Server 2012 R2 Standard REQ29301.edc.local Windows Server 2012 R2 Standard REQ85501.edc.local 10.8.55.1 Windows Server 2012 R2 Standard REQ30001.edc.local 10.3.0.1 Windows Server 2012 R2 Standard REQ98501.edc.local 10.9.85.1 Windows Server 2012 R2 Standard REQ13701.edc.local Windows Server 2012 R2 Standard REQ49701.edc.local 10.4.97.1 Windows Server 2012 R2 Standard REQ89301.edc.local Windows Server 2012 R2 Standard REQ17201.edc.local Windows Server 2012 R2 Standard CERTSERVICEROOT.edc.local Windows Server 2012 Standard

Victim:   |  Group: 
GB flag

uchlogistics.co.uk 

Company logo
Ransomware Group:

Discovery Date: 2023-11-16 14:29
Estimated Attack Date: 2023-11-01

Sector:
UCH Logistics is a dynamic, customer focused provider of specialist transport services to the airfreight industry. Having been established in this industry since the year 2000, we have built a reputation for offering reliable time-sensitive and next day deliveries, at competitive prices. As your transport provider, UCH recognise that we represent you to your customers and are pleased to offer a reliable and professional collection and delivery service that means you will not let your customers down. Using a modern and expanding vehicle fleet that’s fully supported by state of the art technology, we are able to serve destinations throughout the UK as well as mainland Europe. No job is too small or too large and our technology means you can track your consignments at any time of the day or night.SITE: www.uchlogistics.co.uk Address : *UCH Logistics Colnbrook Cargo Centre, * Old Bath Road, Colnbrook, SL3 0NW.ALL DATA SIZE: 895gb 1. Employee files 2. Accounts 3. Human Resources 4. Personal documents employees (passports and driver licenses) And etc

Victim:   |  Group: 
DK flag

citycontainer.dk 

Company logo
Ransomware Group:

Discovery Date: 2023-11-16 14:28
Estimated Attack Date: 2023-10-31

Sector:
[DK] CITY CONTAINER Moderne og miljørigtige logistik- og affaldsløsninger. Med mere end 35 års erfaring er City Container A/S i dag en af landets førende og mest velkonsoliderede virksomheder inden for indsamling og transport af affald for kontor, industri, bygge- og anlægsbranchen, samt store kommunale affaldsløsninger (MSW). City Container har hovedsæde i Farum med afdelinger i Favrskov, Hørsholm, Greve, Gentofte, Kalundborg, Lejre, Odense og Kolding. I City Container er vi ca. 500 ansatte, som dagligt arbejder for at skabe de smarteste og mest miljøvenlige affaldsløsninger for private, virksomheder og kommuner. City Container råder over en samlet vognpark på ca. 180 biler, bestående af komprimatorbiler, der servicerer kommuner med husholdningsaffald (MSW), lastbiler til opgaver for industrikunder og container og kranbiler primært til byggeriet.SITE: www.citycontainer.dk Address : 62 Farum Gydevej, Farum, Capital Region, 3520, DenmarkALL DATA SIZE: 502gb 1. Human Resources 2. Finance 3. Home folder (Personal files employees)

Victim:   |  Group: 
DE flag

agromatic.de 

Company logo
Ransomware Group:

Discovery Date: 2023-11-14 17:27
Estimated Attack Date: 2023-10-30

Sector:
Agromatic is an established contact for rotary, part-turn and linear actuators in various fields of industry. We have been committed to providing the utmost quality for decades. From development to production and custom solutions, we ensure quality control throughout every step of the process in our company.SITE: www.agromatic.de Address Stukenbrocker Weg 38 33813 Oerlinghausen DeutschlandFULL DATA SIZE: 77gb 1. CAD 2. Organisation 3. Finanzen 4. Buchhaltung 5. Customer Files

Victim:   |  Group: 
US flag

cmcsheetmetal.com 

Company logo
Ransomware Group:

Discovery Date: 2023-11-14 17:27
Estimated Attack Date: 2023-10-31

Sector:
CMC Sheet Metal is a premier sheet metal fabrication facility located in Capitol Heights, Maryland providing the highest quality HVAC Construction Services to our clients and the industry. During that time we have preformed individual projects ranging well over thirteen million dollars. What started over 40 years ago with the idea that a full-service sheet metal contracting firm could deliver high quality and prompt service grew into one of the most respected industrial enterprises in the Washington, D.C. area. We have the experience needed to produce top results, the proof to demonstrate our top quality and a complete client satisfaction in all of the work we do.SITE: www.cmcsheetmetal.com Address 1208 MARBLEWOOD AVENUE CAPITOL HEIGHTS, MD 20743 UNITED STATESFULL DATA SIZE: 154gb 1. Administrators 2. Accounting 3. Project Managers 4. Users datas

Victim:   |  Group: 
DE flag

rekord.de 

Company logo
Ransomware Group:

Discovery Date: 2023-11-14 17:26

Sector:
REKORD ist meisterlicher Fachbetrieb für Fenster Sonderbau, Sprossenfenster und Denkmalschutzfenster. Damit können Sie sicher sein, ein handwerklich meisterhaftes und technisch perfektes Einzelstück zu erhalten. Eine Qualität, die bei uns von rekord seit über 100 Jahren gute Tradition ist. Unsere Produkte tragen das bekannte RAL-Gütezeichen für eine regelmäßige Qualitätskontrolle durch ein neutrales Institut. Darüberhinaus prüfen wir selbst vor dem Versand jedes einzelne Produkt noch einmal ganz genau, sorgfältig und umfassend anhand unseres Qualitätssicherheitssystems.SITE: www.rekord.de Address Itzehoer Straße 10 25578 Dägeling DeutschlandFULL DATA SIZE: 917gb 1. Unternehmensdaten 2. Persönliche Daten 3. Projekte 4. CAD 5. Userdat

Victim:   |  Group: 
CA flag

boulangerieauger.com 

Company logo
Ransomware Group:

Discovery Date: 2023-11-14 17:26
Estimated Attack Date: 2023-11-07

Sector:
Boulangerie Auger is first and foremost a story of family and traditions. We are inspired by our heritage to offer current products and develop breads that Quebecers and Ontarians will love tomorrow.SITE: www.boulangerieauger.com Address 24 John F Kennedy Saint-Jérôme, Quebec, J7Y 4B6 CanadaFULL DATA SIZE: 99gb 1. HR 2. Finance 3. Personal data 4. R&D 5. Users data

Victim:   |  Group: 
DE flag

maytec.de 

Company logo
Ransomware Group:

Discovery Date: 2023-11-14 17:25
Estimated Attack Date: 2023-10-30

Sector:
MayTec 100% privately owned family entity. LIT Group owns 17 companies across the USA, Canada, and Europe Company complex covering approximately 13,000 sq. m. Medium-sized international company with subsidiaries in the USA and Australia 82 representatives worldwide offering on-site field service.SITE: www.maytec.de Address Gewerbering 16 D-82140 Olching Germany

Victim:   |  Group: 
CA flag

shopbentley.com 

Company logo
Ransomware Group:

Discovery Date: 2023-11-13 23:26
Estimated Attack Date: 2023-10-24

Sector:
Bentley & Co LTD’s great adventure began in 1987 in St. John’s, Newfoundland, CA. Since that time, our growth and advancement has never stopped. We continue to reinvent ourselves to provide our customers with the best experience on the market and peace of mind with our everyday and travel essentials. Bentley is redoubling its efforts to provide stylish and quality products at the best value while offering impeccable customer service!SITE: www.shopbentley.com Address : *6125 Chemin De La Côte-de-liesse, * St. Laurent, Quebec, H4T 1C8, CanadaALL DATA SIZE: 1.5tb 1. Accounting 2. AcctPay 3. Financials 4. Personnel 5. Payroll 6. Buyers And etc

Victim:   |  Group: 
CA flag

ayakitchens.com 

Company logo
Ransomware Group:

Discovery Date: 2023-11-10 17:36
Estimated Attack Date: 2023-10-31

Sector:
AYA Founded in 2000 with the vision of being a ‘game-changer’ AyA Kitchens and Baths has become Canada’s foremost manufacturer of high quality, frameless cabinetry. By combining old world craftsmanship and attention to detail with high tech manufacturing processes AyA offers innovative, quality cabinetry at competitive, manufacturer direct prices to clients across North America. AyA’s state of the art manufacturing process combines the efficiencies of just in time manufacturing with the customization and quality of old-world craftsmanship. Rather than assembling from stock parts, every kitchen is made from scratch to the individual specifications of every customer. We call it mass customization – your kitchen, the way you want it for a great price. AyA (i’ya) means Design and good design starts from the ground up. AyA has designed and continues to refine one of the most efficient and environmentally friendly cabinet manufacturing facilities in North America. AyA Kitchens and Baths is proud to have earned the KCMA Certification Seal and Environmental Stewardship Program Certification. The Kitchen Cabinet Manufacturers Association Certification program assures that cabinetry bearing the KCMA seal complies with the rigorous standards set by the American National Standards Institute (ANSII)SITE: www.ayakitchens.com Address : AyA Kitchens and Baths 1551 Caterpillar Rd Mississauga, ON T.1.866.AyA-4-YOU T.905.848.1999

Victim:   |  Group: 
US flag

browardfactory.com 

Company logo
Ransomware Group:

Discovery Date: 2023-11-10 17:35
Estimated Attack Date: 2023-10-31

Sector:
BFS provides Heating, Ventilation & Air Conditioning(HVAC) Services, home warranty, and finance services to families in Florida, Texas, Arizona and Nevada. It all started when the president of Broward Factory Service/ BFS Home Warranty, Crockett Herd, was working as an electrician from 9-5 and taking advantage of any overtime opportunities he was offered to support his family. It was at this time, in 1973 that Mr. Herd had the idea of branching out and providing complete household services to families in the Broward County area. Mr. Herd approached condominiums and homeowners associations with this idea and with his hard work, evident integrity, and passion for helping families, BFS was born. Over the past forty plus years BFS has grown to service 4 states, with 18 local service centers. Integrity- doing the right thing, even when no one is looking. This is the whole premise that BFS was born and has grown upon. One of Mr. Herd’s favorite sayings is “Always treat your customers as you would want your mother to be treated,” and this is what our customer service representatives strive to do each and every day. Our mission here at BFS is to keep your family comfortable by providing exceptional service through integrity, hard work, and treating our customers like family. With Crockett Herd still at the helm, two subsequent generations on board, and a close-knit workforce of 200 plus employees, family is still the core of this company today. We look forward to the opportunity to make your family a priority, while providing you with complete indoor comfort by taking care of all of your HVAC and household appliance needs.SITE: www.browardfactory.com Address : 3500 N. 28th Terrace Hollywood, FL 33020 (800) 237-9910

Victim:   |  Group: 
NL flag

boslogistics.eu 

Company logo
Ransomware Group:

Discovery Date: 2023-11-10 17:35
Estimated Attack Date: 2023-10-25

Sector:
[EN] Bos Logistics is a supply chain management company that offers warehousing, airfreight, and ocean freight services to various industries.[NL] Tegenwoordig telt ons wagenpark circa 275 trekkende eenheden en 250 opleggers met een capaciteit van 1 tot 25 ton. Hiermee kan aan vrijwel alle eisen van de klanten voldaan worden. De medewerkers van Bos Logistics beschikken over de benodigde opleidingen en ervaring. Opleidingen staan daarbij hoog in het vaandel. Er wordt veel geïnvesteerd in opleidingen in alle lagen binnen de onderneming. Voor Bos Logistics is dit één van de pijlers om de kwaliteit te borgen, nu en naar de toekomst. Een ander onderscheidend vermogen is de hoogstaande automatisering. Het TMS (Transport Management Systeem) is qua automatisering het hart van de onderneming. Door de automatisering kan Bos Logistics haar klanten efficiënt bedienen. Dit gaat dan niet alleen om het feitelijk plannen van de wagens, maar ook door de koppelingen tussen de systemen van de klant en Bos Logistics. Verder is Bos Logistics in staat om uitgebreide rapportages met eventuele KPI’s te presenteren aan haar klanten. Met onze kennis, ervaring, materieel, systemen maar bovenal onze passie in de logistieke dienstverlening kunnen wij onze klanten gerichte oplossingen bieden binnen de logistiek om daarmee een bijdrage te kunnen leveren tot hun succes.SITE: www.boslogistics.eu Address : Reykjavikweg 2, 1118 LK Schiphol

Victim:   |  Group: 
IT flag

califanocarrelli.it 

Company logo
Ransomware Group:

Discovery Date: 2023-11-08 18:57
Estimated Attack Date: 2023-10-18

Sector:
Califano Carrelli SpA is the exclusive STILL dealer for forklifts, transporters and lifts in Lazio. A professional group founded in 1978 which has progressively developed numerous activities in Italy, Europe and around the world. The authorized STILL and Fiorentini dealership has its main headquarters in Latina, a strategic position that makes Califano Carrelli SpA the largest interlocutor for goods handling in central Italy.SITE: www.califanocarrelli.it Address Via Pontina SS 148 Km 63 04012 Cisterna di Latina (LT)

Victim:   |  Group: 
FR flag

h-tube.com 

Company logo
Ransomware Group:

Discovery Date: 2023-11-07 16:05
Estimated Attack Date: 2023-10-24

Sector:
H & H Tube offers tube fabrication, hydroforming, machining, and tube bending services.SITE: h-htube.com Address : 579 Garfield St, Vanderbilt, Michigan, 49795, United States

Victim:   |  Group: 
US flag

torrescpa.com 

Company logo
Ransomware Group:

Discovery Date: 2023-11-07 16:04
Estimated Attack Date: 2023-10-30

Sector:
When talking about Torres CPA Group we have to mention the fact the company dates back to 1981 when founder, CPA William Torres Torres, began his own practice. This occurred after several years of working with one of the leading international CPA firms. The Torres CPA Group, now known as TCG, is one of the industry- leading local CPA firms with national and international affiliations. Helping organizations to perform in today’s challenging financial landscape, solutions, at a reasonable cost, and with the required expertise you deserve, all to keep growing together. Learn more about Torres CPA Group Below.SITE: www.torrescpa.com Address : PO Box 4846, Carolina, Puerto Rico, 00984, United States

Victim:   |  Group: 
NL flag

tt-engineering.nl 

Company logo
Ransomware Group:

Discovery Date: 2023-11-07 16:04

Sector:
TT-Engineering is verrassend kundig in werktuigbouw. Als je de ervaring die wij door de jaren heen hebben opgebouwd meetelt, is het toch niet zo verrassend. Sinds de oprichting in 1988 hebben wij aan veel mooie mechanical engineering projecten mogen werken. Al die jaren hebben wij in goede en moeilijkere jaren goed ingespeeld op de veranderende omstandigheden, door toekomstgericht te investeren in professionals en relaties. Dit alles heeft ons gemaakt tot een betrokken partner voor duurzame en verrassende ontwikkeling in werktuigbouwkundige engineering.SITE: www.tt-engineering.nl Address Campagneweg 8A 8025 BX Zwolle Nederland

Victim:   |  Group: 
NL flag

nicecloud.nl 

Company logo
Ransomware Group:

Discovery Date: 2023-11-07 16:03
Estimated Attack Date: 2023-10-27

Sector:
NiceCloud is het leukste ICT-bedrijf van Zwolle en omstreken. Zeggen niet alleen onze medewerkers, maar ook onze klanten. Betrouwbaarheid, deskundigheid en NICE! zijn onze kernwaardes. Waarbij dat laatste vooral staat voor plezier hebben in WAT we doen en HOE we dat doen. Voor onze klanten en onszelf. Heb jij een ICT-gerelateerd probleem? Dan gaan wij met plezier voor jou aan de slag!SITE: www.nicecloud.nl Address Marsweg 40 8013 PD Zwolle Nederland

Victim:   |  Group: 
NL flag

triflex.nl 

Company logo
Ransomware Group:

Discovery Date: 2023-11-07 16:02
Estimated Attack Date: 2023-10-27

Sector:
Triflex is producent en leverancier van vloeibare kunststoffen met uitgebreide kennis van en ervaring in hoogwaardige oplossingen voor ieder oppervlak. Wij bieden duurzame afdichtingssystemen en markeringen voor vloeren, parkeerdekken, balkons, galerijen, wegen en daken. Triflex’ producten dragen bij aan de veiligheid, het comfort en een optimale beleving van de gebruikers. Al meer dan 40 jaar verlengt Triflex met de vloeibare kunststoffen de levensduur van gebouwen en constructies. De producten zijn in iedere kleur verkrijgbaar en daarmee valt precies de uitstraling of beleving te creëren die u wenst.SITE: www.triflex.nl Address Boerendanserdijk 35 8024 AE Zwolle Nederland

Victim:   |  Group: 
NL flag

cozwolle.nl 

Company logo
Ransomware Group:

Discovery Date: 2023-11-07 16:02
Estimated Attack Date: 2023-10-27

Sector:
Co Zwolle zorgt voor de verhuur van ruimtes aan ondernemers, de verhuur van de locaties voor bijeenkomsten, de exploitatie van restaurant en receptie en andere facilitaire zaken. Daarnaast biedt de Beheer BV de ondernemers inhoudelijke ondersteuning op het gebied van kennis, kunde en netwerk. Co wil door samenwerking een gemeenschappelijk belang dienen. Doordat we ons als collectief van creatief professionals profileren, vergroten we de zichtbaarheid van de creatieve industrie, zijn we commercieel succesvol en dragen zo bij aan de continuïteit van de ondernemingen.SITE: www.cozwolle.nl Address Esdoornstraat 3 8021 WB Zwolle Nederland

Victim:   |  Group: 
CA flag

acawtrustfunds.ca 

Company logo
Ransomware Group:

Discovery Date: 2023-11-07 11:27

Sector:
The ACAW Health & Wellness Plan provides life insurance and health care benefits to members and their eligible dependents. The Plan is financed by employer contributions specified in Collective Agreements made with participating employers. The contributions are held in Trust to pay the benefits specified in the Plan. A jointly Trusteed Board of equal representation from the Union and the participating employers administers the Plan. Four Trustees are appointed by the participating employers and four Trustees are appointed by the Union. As with the Pension Plan, this Board also hires consultants to assist where required, including a Dental and Medical Consultant, who assist them in determining changes which can be made to the Health & Wellness Plan and when necessary, assessing members’ eligibility for benefits.https://acawtrustfunds.caACAW Trust Funds Suite 101, 15315 123 Avenue NW Edmonton, AB T5V 1S6 Phone: 780-477-9131

Victim:   |  Group: 
CA flag

secci.ca 

Company logo
Ransomware Group:

Discovery Date: 2023-11-07 11:26
Estimated Attack Date: 2023-10-26

Sector:
Suite Excel Collections Canada Inc. (‘SECCI’) specializes in landlord tenant litigation and collection recovery for Property Management firms, REITs, and Landlords across Canada. We proudly have been entrusted by our clients to oversee the largest collection and litigation portfolio in the nation. Our team is comprised of licensed collectors, paralegals, and legal clerks that provide comprehensive collection and litigation services for all Provinces and Territories. Our 25 years of experience, advanced file management technology, and highly trained team have made us the industry leader in our field.http://www.secci.caPrimary 284 Richmond St E Suite 300 Toronto, Ontario M5A1P4, CA

Victim:   |  Group: 
US flag

sacksteinlaw.com 

Company logo
Ransomware Group:

Discovery Date: 2023-11-06 20:27
Estimated Attack Date: 2023-10-19

Sector:
For more than 70 years, our firm has successfully overcome the challenges posed by insurance carriers in car accidents and other types of accident cases. We have won numerous verdicts and negotiated countless settlements. We have recovered millions of dollars for injury victims to help them offset expenses, disabilities and uncertain futures. We always seek to maximize your recovery, and our track record of proven case results reflects our dedication and hard won experience. Our family of personal injury attorneys at Sackstein Sackstein & Lee, LLP has been helping families like yours get the compensation they deserve since 1952. With offices throughout the New York City and Long Island area, and more than 60 years of serving your community, we provide excellent service and fight to get you the maximum compensation for your injury or loss.SITE: www.sacksteinlaw.com Address 15408 Northern Blvd Ste 2C Flushing, New York, 11354 United States

Victim:   |  Group: 
ES flag

imancorp.es 

Company logo
Ransomware Group:

Discovery Date: 2023-11-02 13:00

Sector:
IMAN un conjunto de unidades de negocio pero, sobre todo, somos lo que hemos sido capaces de hacer por nuestros clientes durante más de 25 años. Gracias a ellos hemos crecido, aprendido y consolidado como compañía con el objetivo de convertirnos en la primera empresa de capital nacional del sector servicios. Nuestra apuesta por la innovación y la mejora continua, unido al conjunto de unidades de negocio especializadas que disponemos, nos permite ofrecer a nuestros clientes un abanico de servicios integrales, eficientes y adaptados a sus necesidades, con un nivel excelente de calidad.SITE: www.imancorp.es

Victim:   |  Group: 
US flag

strongtie.com 

Company logo
Ransomware Group:

Discovery Date: 2023-11-01 16:19

Sector:
Simpson Strong-Tie is the world leader in structural engineering solutions and deeply dedicated to a mission of helping people design and build safer, stronger structures. For more than 60 years, Simpson Strong-Tie has dedicated itself to creating structural solutions and technology to help people construct safer, stronger homes and buildings. Considered an industry leader in structural systems research, testing and innovation, Simpson Strong-Tie works closely with construction professionals to provide code-listed, field-tested products and value-engineered solutions. Our engineered products and solutions are recognized for helping structures resist high winds, hurricanes and seismic forces. They include structural connectors, fasteners, fastening systems, lateral-force-resisting systems, anchors, software solutions, and product solutions for repairing, protecting and strengthening concrete. From product development and testing to training and engineering and field support, Simpson Strong-Tie is committed to helping customers succeed.SITE: www.strongtie.com Address 5956 W. Las Positas Blvd Pleasanton, Ca 94588 United States

Victim:   |  Group: 
US flag

ampersand.tv 

Company logo
Ransomware Group:

Discovery Date: 2023-11-01 16:18

Sector:
Ampersand is a data-driven TV advertising sales and technology company. We reach 116 million multiscreen households, providing viewership insights and planning on 42 million households, in 200+ DMAs, across more than 165+ networks and in all dayparts. Meet Ampersand. The vision for NCC Media was born by a couple, Linda and Bob Williams, in Boston in 1981. Originally called New England Cable Rep, these two entrepreneurs ambitiously set out to unify cable inventory so that an advertiser could have a simpler way to buy cable programming in the local TV market.SITE: www.ampersand.tv Address 151 W 42nd St Fl 11 New York City, New York 10036, United States

Victim:   |  Group: 
FR flag

baccarat.com 

Company logo
Ransomware Group:

Discovery Date: 2023-11-01 16:17

Sector:
Baccarat (Paris, Euronext, BCRA) is a market-leading designer, manufacturer and retailer of luxury crystal products. Since its foundation in 1764, the company, whose manufacturing base is in Baccarat in the Lorraine region of Eastern France, has been synonymous with a unique savoir-faire and has come to symbolize an inimitable French Art de Vivre. For 250 years, the brand has inspired leading designers from across the world. Ranging from iconic lighting to unique tableware and decorative objects, fine jewellery and tailor-made flacons, the brand’s products and tradition of excellence are widely distributed around the globe.SITE: www.baccarat.com Address 20 Rue Des Cristalleries Baccarat, Grand-Est 54120, France

Victim:   |  Group: 
IT flag

piemmeonline.it 

Company logo
Ransomware Group:

Discovery Date: 2023-11-01 16:16

Sector:
Piemme S.p.A. è stata fondata nel 1988 e nel 1996 è entrata a far parte del Gruppo Caltagirone Editore. Piemme è oggi una Media Platform completa che conta in gestione 8 quotidiani, 11 siti, 10 periodici oltre a 2 radio locali ed un’emittente televisiva in grado di fornire servizi oltre alla vendita di spazi pubblicitari. Piemme conta 6 sedi principali a Roma, Milano, Napoli, Venezia-Mestre, Ancona e Lecce e diverse filiali distribuite capillarmente sull’intero territorio nazionale.SITE: www.piemmeonline.it Address 10 Via Montello, Roma Lombardy, 00195, Italy

Victim:   |  Group: 
US flag

fortive.com 

Company logo
Ransomware Group:

Discovery Date: 2023-11-01 16:15

Sector:
Fortive Corporation is a provider of essential technologies for connected workflow solutions across a range of attractive endmarkets. Our strategic segments - Intelligent Operating Solutions, Precision Technologies, and Advanced Healthcare Solutions - include well-known brands with leading positions in their markets. Our businesses design, develop, manufacture, and service professional and engineered products, software, and services, building upon leading brand names, innovative technologies, and significant market positions. We are headquartered in Everett, Washington and employ a team of more than 18,000 research and development, manufacturing, sales, distribution, service, and administrative employees in more than 50 countries around the world.SITE: www.fortive.com Address 6920 Seaway Blvd, Everett Washington, 98203 United States

Victim:   |  Group: 
GB flag

gannons.co.uk 

Company logo
Ransomware Group:

Discovery Date: 2023-11-01 16:14

Sector:
Catherine Gannon, then a tax solicitor at a large US law firm, looks out from their ivory tower and spots a gap in the market. This gap is the lack of high quality legal advice for entrepreneurs and SMEs. Research quickly reveals that SMEs generate most of the UK’s GNP – far more than the quoted sector produces. Many larger law firms claim to service SMEs but in reality smaller businesses are pushed to the bottom of the pile. The opportunity has crystallised – the delivery of top quality legal advice SMEs need within a sensible price bracket.SITE: www.gannons.co.uk Address 20-21 Jockey’s Fields Holborn, London WC1R 4BW

Victim:   |  Group: 
BR flag

gsp.com.br 

Company logo
Ransomware Group:

Discovery Date: 2023-11-01 16:13

Sector:
Em 1986, na cidade de Ourinhos (SP), o desejo em realizar o sonho de milhares de brasileiros foi a principal razão do nascimento de uma empresa que, mais de 35 anos depois, se mantém fiel à sua premissa básica: encarar cada trabalho como primeiro e único, aplicando sua experiência e excelência em cada projeto. Hoje, a GSP Loteamentos se fortaleceu e tornou-se uma empresa de presença nacional. Estamos presentes em 8 estados e 60 cidades, com milhões de metros quadrados urbanizados e mais de 50 mil clientes satisfeitos. Seguindo nossos princípios e valores, construímos uma história sólida, baseada em nossa credibilidade junto ao mercado e na qualidade entregue. Isso nos dá a certeza de que estamos no caminho certo e que iremos ainda mais longe. Novos sonhos já estão no papel e muitos outros saem dele para se tornarem realidade.SITE: www.gsp.com.br Address Rua Helena, 275 CJ. 22 e 23, Vila Olímpia São Paulo - SP CEP: 04552-050

Victim:   |  Group: 
GB flag

edwardian.com 

Company logo
Ransomware Group:

Discovery Date: 2023-11-01 13:10

Sector:
Edwardian Hotels London is one of the UK’s largest privately owned hotel groups, which has been operating and developing its hospitality portfolio. Edwardian Hotels London owns and operates a collection of four and five-star hotels and restaurants, including The Londoner, a member of Preferred Hotels & Resorts’ prestigious Legend Collection; The May Fair and The Edwardian Manchester, both part of premium lifestyle brand Radisson Collection; and 10 Radisson Blu Edwardian hotels across London. For several decades, Edwardian Hotels London has contributed to the fabric of our neighbourhoods. The diversity and long-standing nature of Edwardian’s network of partners has created a trusted link between key organisations across the arts and culture, trade, education, and technology sectors.SITE: www.edwardian.com Address 140 Bath Rd, London Greater London, UB3 5AW United Kingdom

Victim:   |  Group: 
US flag

bionpharma.com 

Company logo
Ransomware Group:

Discovery Date: 2023-11-01 11:31

Sector:
Launched in 2014, BionPharma was founded by a team of executives and professionals with years of cumulative experience in the generics industry. Bionpharma’s goals are to develop and commercialize affordable quality generics and building strong and effective partnerships. Based in Princeton, New Jersey, and with offices in Raleigh, North Carolina BionPharma is licensed to do business in the United States and is accomplished in the areas of product development, regulatory affairs, quality management, sales and distribution, and supply chain management. Today, Bionpharma is one of the largest suppliers of soft gel capsules in the US market with a strong presence in both the prescription and over-the-counter markets. Bionpharma enjoys a presence in all the pharmacy chains across the US market, with online presence for certain of our OTC products on AmazonSITE: https://www.bionpharma.com Address 400 Alexander Park Princeton, NJ 08540

Victim:   |  Group: 
GB flag

stantonwilliams.com 

Company logo
Ransomware Group:

Discovery Date: 2023-11-01 11:30

Sector:
Stanton Williams is a London based design studio that has gained international recognition for its thoughtful and innovative approach to sensitive sites and complex, ambitious projects. Our portfolio has expanded from an initial focus on the arts to encompass a wide range of projects at different scales. The quality of our work has been recognised with over 150 major awards, including the RIBA Stirling Prize for the Sainsbury Laboratory, University of Cambridge, and the RIBA Award for International Excellence for the Musée d’arts de Nantes.SITE: www.stantonwilliams.comSTANTON WILLIAMS Address 36 Graham St, London Essex, N1 8GJ United Kingdom

Victim:   |  Group: 
DE flag

hugohaeffner.com 

Company logo
Ransomware Group:

Discovery Date: 2023-11-01 11:29

Sector:
As a leading expert for the marketing and distribution of acids/lyes, solvents as well as speciality chemicals we function with our own Network in all of Europe. Through our comprehensive services – reaching from storing, filling/bottling up and transporting to mixing and recycling chemicals. Furthermore we offer the qualified application consultancy services via our own field sales force – our 20.000 customers can purchase over 3,000 products as well as rely on many years of industry know-how and innovative solutions from one source.SITE: hugohaeffner.comHAFFNER GmbH Co. Address Friedrichstr. 3 D-71679 Asperg GERMANY

Victim:   |  Group: 
IT flag

intred.it 

Company logo
Ransomware Group:

Discovery Date: 2023-11-01 11:29

Sector:
Every technological innovation determines social progress, just as every new communication tool revolutionizes our way of interpreting reality, of relating and doing business. Intred strongly believes in the combination of ‘technology and development’ and is aware of how the availability of increasingly performing technologies constitutes a concrete competitive advantage, for this reason its gaze is constantly oriented towards the future, in order to create value for its customers. through technological innovation. The profile of a company that has made innovation and the creation of cutting-edge solutions in the ultra-fast communication sector its distinctive featureSITE: www.intred.it Address Via Pietro Tamburini 1 – 25136 Brescia Italy

Victim:   |  Group: 
GB flag

VOLEX.COM 

Company logo
Ransomware Group:

Discovery Date: 2023-10-27 10:00

Sector:
Volex is a leading integrated manufacturing specialist for performance-critical applications and power products. Our trusted brand holds unparalleled leadership positions in two critical areas of the interconnect space. With 19 operating sites, our globally diverse team of over 11,500 colleagues work across 24 countries. They are united by a shared mission: to be a World Class Supplier, providing our customers with electronic assembly services that will exceed their expectations.SITE: www.volex.com Address Unit C1 Antura Bond Close Basingstoke RG24 8PZ United Kingdom

Victim:   |  Group: 
US flag

Fortive Corporation 

Company logo
Ransomware Group:

Discovery Date: 2023-10-25 23:59
Estimated Attack Date: 2023-10-12

Sector:
Fortive Corporation is a provider of essential technologies for connected workflow solutions across a range of attractive endmarkets. Our strategic segments - Intelligent Operating Solutions, Precision Technologies, and Advanced Healthcare Solutions - include well-known brands with leading positions in their markets. Our businesses design, develop, manufacture, and service professional and engineered products, software, and services, building upon leading brand names, innovative technologies, and significant market positions. We are headquartered in Everett, Washington and employ a team of more than 18,000 research and development, manufacturing, sales, distribution, service, and administrative employees in more than 50 countries around the world.SITE: www.fortive.com Address 6920 Seaway Blvd, Everett Washington, 98203 United States

Victim:   |  Group: 
IT flag

Panificio Grandolfo 

Company logo
Ransomware Group:

Discovery Date: 2023-10-23 16:03

Sector:
Panificio Grandolfo Address Bari, Italy

Victim:   |  Group: 
IT flag

Panetteria Grandolfo 

Company logo
Ransomware Group:

Discovery Date: 2023-10-21 19:00

Sector:
Panetteria Grandolfo Address Via Brigata Regina 90 - 70123 Bari (BA) Italy

Victim:   |  Group: 
US flag

Simpson Strong-Tie 

Company logo
Ransomware Group:

Discovery Date: 2023-10-21 18:59
Estimated Attack Date: 2023-10-10

Sector:
Simpson Strong-Tie is the world leader in structural engineering solutions and deeply dedicated to a mission of helping people design and build safer, stronger structures. For more than 60 years, Simpson Strong-Tie has dedicated itself to creating structural solutions and technology to help people construct safer, stronger homes and buildings. Considered an industry leader in structural systems research, testing and innovation, Simpson Strong-Tie works closely with construction professionals to provide code-listed, field-tested products and value-engineered solutions. Our engineered products and solutions are recognized for helping structures resist high winds, hurricanes and seismic forces. They include structural connectors, fasteners, fastening systems, lateral-force-resisting systems, anchors, software solutions, and product solutions for repairing, protecting and strengthening concrete. From product development and testing to training and engineering and field support, Simpson Strong-Tie is committed to helping customers succeed.SITE: www.strongtie.com Address 5956 W. Las Positas Blvd *Pleasanton, Ca 94588 * United States

Victim:   |  Group: 
GB flag

STANTON WILLIAMS 

Company logo
Ransomware Group:

Discovery Date: 2023-10-17 14:35

Sector:
Stanton Williams is a London based design studio that has gained international recognition for its thoughtful and innovative approach to sensitive sites and complex, ambitious projects. Our portfolio has expanded from an initial focus on the arts to encompass a wide range of projects at different scales. The quality of our work has been recognised with over 150 major awards, including the RIBA Stirling Prize for the Sainsbury Laboratory, University of Cambridge, and the RIBA Award for International Excellence for the Musée d’arts de Nantes.SITE: www.stantonwilliams.com Address 36 Graham St, London Essex, N1 8GJ United Kingdom

Victim:   |  Group: 
GB flag

Edwardian Hotels London 

Company logo
Ransomware Group:

Discovery Date: 2023-10-17 14:34

Sector:
Edwardian Hotels London is one of the UK’s largest privately owned hotel groups, which has been operating and developing its hospitality portfolio. Edwardian Hotels London owns and operates a collection of four and five-star hotels and restaurants, including The Londoner, a member of Preferred Hotels & Resorts’ prestigious Legend Collection; The May Fair and The Edwardian Manchester, both part of premium lifestyle brand Radisson Collection; and 10 Radisson Blu Edwardian hotels across London. For several decades, Edwardian Hotels London has contributed to the fabric of our neighbourhoods. The diversity and long-standing nature of Edwardian’s network of partners has created a trusted link between key organisations across the arts and culture, trade, education, and technology sectors.SITE: www.edwardian.com Address 140 Bath Rd, London Greater London, UB3 5AW United Kingdom

Victim:   |  Group: 
 flag

HAFFNER GmbH Co. 

Company logo
Ransomware Group:

Discovery Date: 2023-10-17 14:34

Sector:
As a leading expert for the marketing and distribution of acids/lyes, solvents as well as speciality chemicals we function with our own Network in all of Europe. Through our comprehensive services – reaching from storing, filling/bottling up and transporting to mixing and recycling chemicals. Furthermore we offer the qualified application consultancy services via our own field sales force – our 20.000 customers can purchase over 3,000 products as well as rely on many years of industry know-how and innovative solutions from one source.SITE: hugohaeffner.com Address Friedrichstr. 3 D-71679 Asperg GERMANY

Victim:   |  Group: 
IT flag

Intred 

Company logo
Ransomware Group:

Discovery Date: 2023-10-17 14:33
Estimated Attack Date: 2023-09-28

Sector:
Every technological innovation determines social progress, just as every new communication tool revolutionizes our way of interpreting reality, of relating and doing business. Intred strongly believes in the combination of ‘technology and development’ and is aware of how the availability of increasingly performing technologies constitutes a concrete competitive advantage, for this reason its gaze is constantly oriented towards the future, in order to create value for its customers. through technological innovation. The profile of a company that has made innovation and the creation of cutting-edge solutions in the ultra-fast communication sector its distinctive featureSITE: www.intred.it Address Via Pietro Tamburini 1 – 25136 Brescia Italy

Victim:   |  Group: 
US flag

Ampersand 

Company logo
Ransomware Group:

Discovery Date: 2023-10-17 14:33

Sector:
Ampersand is a data-driven TV advertising sales and technology company. We reach 116 million multiscreen households, providing viewership insights and planning on 42 million households, in 200+ DMAs, across more than 165+ networks and in all dayparts. Meet Ampersand. The vision for NCC Media was born by a couple, Linda and Bob Williams, in Boston in 1981. Originally called New England Cable Rep, these two entrepreneurs ambitiously set out to unify cable inventory so that an advertiser could have a simpler way to buy cable programming in the local TV market.SITE: www.ampersand.tv Address 151 W 42nd St Fl 11 New York City, New York 10036, United States

Victim:   |  Group: 
FR flag

BACCARAT 

Company logo
Ransomware Group:

Discovery Date: 2023-10-17 14:32

Sector:
Baccarat (Paris, Euronext, BCRA) is a market-leading designer, manufacturer and retailer of luxury crystal products. Since its foundation in 1764, the company, whose manufacturing base is in Baccarat in the Lorraine region of Eastern France, has been synonymous with a unique savoir-faire and has come to symbolize an inimitable French Art de Vivre. For 250 years, the brand has inspired leading designers from across the world. Ranging from iconic lighting to unique tableware and decorative objects, fine jewellery and tailor-made flacons, the brand’s products and tradition of excellence are widely distributed around the globe.SITE: www.baccarat.com Address 20 Rue Des Cristalleries Baccarat, Grand-Est 54120, France

Victim:   |  Group: 
IT flag

PIEMME S.p.A. 

Company logo
Ransomware Group:

Discovery Date: 2023-10-17 14:32
Estimated Attack Date: 2023-10-03

Sector:
Piemme S.p.A. è stata fondata nel 1988 e nel 1996 è entrata a far parte del Gruppo Caltagirone Editore. Piemme è oggi una Media Platform completa che conta in gestione 8 quotidiani, 11 siti, 10 periodici oltre a 2 radio locali ed un’emittente televisiva in grado di fornire servizi oltre alla vendita di spazi pubblicitari. Piemme conta 6 sedi principali a Roma, Milano, Napoli, Venezia-Mestre, Ancona e Lecce e diverse filiali distribuite capillarmente sull’intero territorio nazionale.SITE: www.piemmeonline.it Address 10 Via Montello, Roma Lombardy, 00195, Italy

Victim:   |  Group: 
FR flag

DOMAIN-BACCARAT_2 

Company logo
Ransomware Group:

Discovery Date: 2023-10-16 10:07

Sector:
Baccarat (Paris, Euronext, BCRA) is a market-leading designer, manufacturer and retailer of luxury crystal products. Since its foundation in 1764, the company, whose manufacturing base is in Baccarat in the Lorraine region of Eastern France, has been synonymous with a unique savoir-faire and has come to symbolize an inimitable French Art de Vivre. For 250 years, the brand has inspired leading designers from across the world. Ranging from iconic lighting to unique tableware and decorative objects, fine jewellery and tailor-made flacons, the brand’s products and tradition of excellence are widely distributed around the globe.SITE: www.baccarat.com Address 20 Rue Des Cristalleries Baccarat, Grand-Est 54120, France

Victim:   |  Group: 
US flag

NCC_2 

Company logo
Ransomware Group:

Discovery Date: 2023-10-16 08:35
Estimated Attack Date: 2023-09-28

Sector:
Ampersand is a data-driven TV advertising sales and technology company. We reach 116 million multiscreen households, providing viewership insights and planning on 42 million households, in 200+ DMAs, across more than 165+ networks and in all dayparts. Meet Ampersand. The vision for NCC Media was born by a couple, Linda and Bob Williams, in Boston in 1981. Originally called New England Cable Rep, these two entrepreneurs ambitiously set out to unify cable inventory so that an advertiser could have a simpler way to buy cable programming in the local TV market.SITE: www.ampersand.tv Address 151 W 42nd St Fl 11 New York City, New York 10036, United States

Victim:   |  Group: 
GB flag

STANTONWILLIAMS 

Company logo
Ransomware Group:

Discovery Date: 2023-10-11 13:03

Sector:
Stanton Williams is a London based design studio that has gained international recognition for its thoughtful and innovative approach to sensitive sites and complex, ambitious projects. Our portfolio has expanded from an initial focus on the arts to encompass a wide range of projects at different scales. The quality of our work has been recognised with over 150 major awards, including the RIBA Stirling Prize for the Sainsbury Laboratory, University of Cambridge, and the RIBA Award for International Excellence for the Musée d’arts de Nantes.SITE: www.stantonwilliams.com Address 36 Graham St, London Essex, N1 8GJ United Kingdom

Victim:   |  Group: 
GB flag

REH 

Company logo
Ransomware Group:

Discovery Date: 2023-10-11 13:02

Sector:
Edwardian Hotels London is one of the UK’s largest privately owned hotel groups, which has been operating and developing its hospitality portfolio. Edwardian Hotels London owns and operates a collection of four and five-star hotels and restaurants, including The Londoner, a member of Preferred Hotels & Resorts’ prestigious Legend Collection; The May Fair and The Edwardian Manchester, both part of premium lifestyle brand Radisson Collection; and 10 Radisson Blu Edwardian hotels across London. For several decades, Edwardian Hotels London has contributed to the fabric of our neighbourhoods. The diversity and long-standing nature of Edwardian’s network of partners has created a trusted link between key organisations across the arts and culture, trade, education, and technology sectors.SITE: www.edwardian.com Address 140 Bath Rd, London Greater London, UB3 5AW United Kingdom

Victim:   |  Group: 
 flag

HAEFFNER-ASP 

Company logo
Ransomware Group:

Discovery Date: 2023-10-11 13:02
Estimated Attack Date: 2023-09-26

Sector:
As a leading expert for the marketing and distribution of acids/lyes, solvents as well as speciality chemicals we function with our own Network in all of Europe. Through our comprehensive services – reaching from storing, filling/bottling up and transporting to mixing and recycling chemicals. Furthermore we offer the qualified application consultancy services via our own field sales force – our 20.000 customers can purchase over 3,000 products as well as rely on many years of industry know-how and innovative solutions from one source.SITE: hugohaeffner.com Address Friedrichstr. 3 D-71679 Asperg GERMANY

Victim:   |  Group: 
 flag

GREGAGG