The Lynx ransomware group has allegedly claimed responsibility for a cyberattack against Premier Surfaces Inc., a prominent American countertop fabricator and installer. The claim appeared on the threat actor’s dark web leak site, adding the company to a growing list of corporate victims targeted by the ransomware gang. Premier Surfaces, which was acquired by Clio Holdings in 2017, is a significant entity in the construction and home renovation industry, specializing in fabricating and installing countertops.
The post, dated July 28, 2025, indicates that the attackers have allegedly encrypted the company’s files and published proof of the compromise to validate their claims. While specific details about the exfiltrated data have not been disclosed, the nature of such attacks typically involves the theft of sensitive corporate and customer information. The ransomware group’s publication also highlighted an alleged income of $21,000,000 associated with the company, likely as a tactic to underscore the company’s value and pressure them into negotiation.
This incident highlights the continued threat that ransomware poses to businesses across all sectors, regardless of their public revenue disclosures. The attack on a subsidiary of a larger holding company like Clio Holdings demonstrates that cybercriminals often target interconnected corporate structures to maximize their impact and potential payout.
