The Sinobi ransomware group claims to have breached the networks of five distinct organizations across the United States. The threat actor released a list of alleged victims on their leak site, threatening to publish sensitive internal files. The latest list of alleged victims posted by the group includes:
-
Quality Companies (🇺🇸): Headquartered in Youngsville, Louisiana, this company provides energy-related products and services, including onshore and offshore construction, fabrication, and maintenance.
-
Galesi Group (🇺🇸): A national real estate developer based in New York’s Capital Region, managing a portfolio of over 11 million square feet of industrial, commercial, and residential properties.
-
Gopher Industrial (🇺🇸): A premier industrial distributor specializing in hoses, welding products, safety solutions, and supply chain integration.
-
Jeffrey W Krol & Associates (🇺🇸): A full-service certified public accounting firm based in Chicago, Illinois, providing tax preparation and financial planning services.
-
Caldwell & Company Accounting (🇺🇸): A CPA firm located in Plantation, Florida, offering comprehensive accounting and financial services to individuals and businesses.
The allegedly compromised data varies by victim, with the group claiming to hold hundreds of gigabytes of exfiltrated files. According to the actor, the compromised information includes:
-
Financial data
-
Confidential company documents
-
Contracts
-
Customer data
-
Incident reports
-
Internal business records
