Notorious ransomware group INC Ransom has allegedly breached a diverse set of eight international companies, posting claims of the attacks online throughout Thursday, July 17, 2025. In a bold move, the threat actors published not only the names of their victims but also specific details about their operations and revenue, a tactic designed to add pressure and credibility to their threats. The list of targets spans multiple continents and industries, from a non-profit healthcare provider in Belgium to a historic manufacturer in the UK and a national importer in Canada, demonstrating the indiscriminate nature of modern cyber threats.
The group’s leak site, which details the alleged victims, paints a vivid picture of the compromised organizations. The data allegedly exfiltrated could pose a significant risk, potentially exposing sensitive corporate, employee, and customer information. The victims, according to the group’s posts, include:
- Huize Sint-Augustinus (Belgium): A non-profit residential care organization with a reported revenue of $16.3 million and 45 employees, providing essential services to the elderly.
- HTC Högtryckscenter (Sweden): A long-standing Swedish supplier of industrial high-pressure washers, electric work vehicles, and street vacuums, serving municipalities and industrial clients since 1984.
- Crompton Lamps (UK): One of the world’s oldest lamp manufacturers, founded in 1878, with a rich history of providing lighting for prestigious sites like Windsor Castle and a reported revenue of $7.9 million.
- Wing Poh Hardware PTE LTD (Singapore): A leading Singaporean distributor of industrial, automotive, and garden tools from major international brands, with 30 years of experience and a revenue of $5.8 million.
- South East Country Vets (Australia): A veterinary service in Australia with an $8 million revenue, providing a wide range of care for companion animals, equines, and livestock.
- TERENCE C RINGLAND & CO PTY LTD (Australia): An Australian professional services firm specializing in accounting, tax preparation, and bookkeeping, with a reported revenue of $5 million.
- Comet Strip Enterprises Ltd (Canada): A leading Canadian national importer of over 13,000 seasonal and general merchandise products, including Christmas and Halloween items, with a $5 million revenue.
- Vitec: A provider of contact center solutions designed to help businesses optimize customer satisfaction, training, and service experiences, reportedly generating $5 million in revenue.
This campaign utilizes a double-extortion strategy, where the attackers allegedly steal sensitive data before encrypting the victim’s network. The public release of internal information, such as revenue figures, is a powerful intimidation tool used to coerce companies into paying the ransom demand to prevent the full-scale leak of their data. This incident serves as a stark reminder that businesses of all sizes and sectors are vulnerable, and the consequences of a breach can extend far beyond simple financial loss to severe reputational and operational damage.
