ThermoEx Company Limited, a leading manufacturer of high-pressure equipment and heat exchangers in Thailand, has allegedly been compromised. A substantial database belonging to the company has appeared for sale on a cybercrime forum for $15,000. ThermoEx specializes in designing equipment according to ASME standards and serves major international clients including Parker Hannifin, Linde, and various petrochemical, oil, and gas companies. The leak reportedly involves 170 GB of data comprising over 108,000 files.
According to the actor, the allegedly compromised data includes:
-
Complete financial documents: Purchase Orders (POs) from 2018 to 2025, invoices, payments, customs, and transportation costs.
-
Technical and engineering drawings: DWG files, PDFs, Compress calculations, BOMs, and As-Built Drawings.
-
Quality control documents: QC Manuals, QCPs, material certificates, and hydrostatic/pneumatic test reports.
-
Project documentation: Files for ongoing and completed projects, including specific codes (e.g., J25-1706 Parker).
-
Internal communications: Correspondence, emails, contracts, and supplier information.
-
Production media: Real photos from the production process and testing.
