The Sinobi ransomware group claims to have breached multiple organizations. The group has listed the following companies on their dark web leak site:
-
FIAMPACK (🇺🇸): A custom contract packager specializing in packaging solutions, based in New York.
-
Ashcraft (🇺🇸): A manufacturers’ representative for HVAC equipment based in Dallas, Texas.
-
JP Research (🇺🇸): A statistical and engineering research firm specializing in automotive safety.
-
Active Green + Ross (🇨🇦): A chain of tire and auto repair centers operating across Southern Ontario.
-
Affordable Housing Management, Inc. (🇺🇸): A nonprofit organization based in North Carolina managing affordable rental housing.
-
Impressico Business Solutions (🇮🇳): An IT solutions provider offering software development and digital marketing services.
-
Gallagher Transport International (🇺🇸): A customs broker and logistics provider based in Denver, Colorado.
-
Morison Insurance Brokers (🇨🇦): A leading insurance provider serving Ontario.
According to the actor, the allegedly compromised data includes:
-
AD Dumps: Active Directory databases containing user credentials.
-
Proof Packs: Samples of internal documents and client records.
-
Encrypted Files: Proprietary data locked by the ransomware.
