The INC Ransom group has allegedly added two new victims from North America to its data leak blog, claiming to have successfully breached an American industrial machinery provider and a Canadian nutrition company. The targeted organizations are CLIMAX Portable Machining and Testing Systems and ALLMAX Nutrition. The threat actor claims to have exfiltrated data from both entities, employing a double-extortion tactic to pressure them into meeting ransom demands.
The two victims operate in completely different sectors, demonstrating the broad and opportunistic nature of the ransomware group’s attacks. The compromised entities are:
- 🇺🇸 CLIMAX: A prominent US-based company founded in 1966, headquartered in Oregon. CLIMAX is a key provider of portable machining, welding, and testing systems for critical global industries, including Oil & Gas, Mining, Power Generation, and Transportation. The company has a reported revenue of $40 million.
- 🇨🇦 ALLMAX Nutrition: A Canadian company based in Ontario, specializing in professional-grade supplements for advanced bodybuilding and training. With a reported revenue of $5 million, it is a notable name in the fitness and retail industry.
This incident underscores the persistent threat that ransomware gangs like INC pose to businesses of all sizes and industries. By listing the companies on their leak site, the attackers are increasing the pressure on the victims, who now face the risk of having sensitive corporate or customer information publicly exposed. At the time of this report, no proof of the allegedly stolen data has been published.
