The ransomware group known as Inc Ransom has allegedly added eight new victims to its data leak site, showcasing a continued campaign targeting a wide array of industries across North America and Europe. The list of victims includes companies and organizations from the legal, manufacturing, insurance, software, and non-profit sectors. This diverse targeting underscores the opportunistic nature of the group’s attacks, affecting organizations of various sizes and functions.
The threat actors claim to have successfully breached the following entities:
- 🇺🇸 Reizen Law Group: A U.S.-based law firm specializing in personal injury cases.
- 🇨🇦 ASI Group Ltd.: A Canadian company that is an industry leader in underwater inspection, maintenance, and repair services.
- 🇩🇪 Neues Leben: A German educational and religious organization offering theological courses and mission work information.
- 🇺🇸 Hitachi T&D Solutions, Inc.: A U.S.-based premier international supplier of high-voltage electrical equipment.
- 🇺🇸 National Boat Owners Association (NBOA): One of the largest marine insurance agencies in the United States, providing coverage and services for boaters.
- 🇺🇸 CSaaS: A U.S. software and managed IT services company offering custom-hosted solutions.
- 🇺🇸 HeartLine Oklahoma: A non-profit organization in the U.S. that connects community members to health, housing, and other essential services.
- 🇺🇸 DTX Studio: A California-based company that provides software for dental professionals.
As proof of compromise, the ransomware group has published file listings for some of the victims, detailing the types of sensitive information allegedly exfiltrated. For HeartLine Oklahoma, the leaked data appears to include highly sensitive operational and personnel files. For the National Boat Owners Association (NBOA), the leak allegedly contains extensive financial and personal documents. The publication of such detailed file structures suggests a significant data breach with potentially severe consequences for the affected organizations and their clients.
Allegedly leaked data from HeartLine Oklahoma includes:
- Human Resources (HR) documents and forms
- Disciplinary action records
- Employee lists and staff phone lists
- Crisis Intervention Department files
- Standard Operating Procedures and disaster plans
- Call logs and chat transcripts
Allegedly leaked data from the National Boat Owners Association (NBOA) includes:
- Accounting and budget files
- Tax documents, including personal and federal tax returns
- Balance sheets and income statements
- Personal user folders containing mortgage approval documents and W2s
- Insurance policy and claims information
