The Sinobi ransomware group claims to have breached multiple organizations in its latest wave of attacks. The latest list of alleged victims posted by the group includes:
-
Reading Elevator Service (RES) (🇺🇸): A reputable elevator company established in 1969, specializing in the installation, maintenance, and modernization of elevator systems across Eastern Pennsylvania.
-
GV Service (🇺🇸): A leading supplier and distributor of Italian-made cutting-edge technology and machinery for the ceramic tile, stone, and brick industries in North America.
-
Pathmaker Group (🇺🇸): A specialized consulting firm established in 2003, focused on Identity and Access Management (IAM) solutions for businesses.
-
Garrett Taylor, Dds (🇺🇸): A family dentistry practice located in Pine Bluff, Arkansas, providing personalized dental care and community services.
According to the actor, the compromised data includes sensitive operational and financial files. Screenshots released by the group as proof of compromise appear to show:
-
Financial Information: Folders labeled “Bank accts” and “Tax info” (specifically from Reading Elevator Service).
-
Corporate Credentials: Lists of usernames and passwords for various services including UPS, FedEx, Verizon, ADP, and government portals.
-
Internal Network Data: Active Directory user lists, server system information, and administrative login screens.
-
Operational Documents: Files related to internal programs (e.g., “Total Elevator Program”) and client correspondence.
