Ransomware Group intelligence
Leakeddata
InactiveTrack Leakeddata with 72 published victims in a single intelligence view.
Overview
Leakeddata is tracked by Breach House as a ransomware group with 72 published victims.
United States is currently the most targeted country in this dataset.
No leak location metadata is currently available for this group.
Top Countries
Interactive distribution based on the currently visible victims list.
Known Leak Locations (0)
No known leak locations available for this group.
Top Activity Sectors
No sector intelligence available.
Ransom Notes (0)
▼No ransom notes available for this group.
Tools Used
▼No tools used available.
YARA Rules (0)
▼No YARA rules available.
Indicators of Compromise (0)
▼No IoCs available for this group.
Negotiation Chats (0)
▼No negotiation chats available.
Research Sources
No external research sources linked yet.
Victims (72)
Search, filter and paginate the victim timeline for Leakeddata. Showing 1–72 of 72.
| Type | Target | Discovered | Country | Business Category | Intel Link |
|---|---|---|---|---|---|
| Ransomware | Langer & Langer id19852 View details | Germany | Retail / E-commerce | — | |
|
langer-langer.de is associated with a retail and e-commerce business in Germany, serving customers through a commercial online presence. Publicly available company information for the Langer name in Germany indicates manufacturing and industrial activity in Baden-Württemberg, but no authoritative source in the provided results confirms a dedicated corporate profile for this exact domain. Based on the listing context, the entity should be understood as a German retail/e-commerce target identified in a threat-intelligence index. It was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Elmore & Bunn id19851 View details | United States | Finance / Legal / Insurance | — | |
|
Chadwick Washington is a Virginia law firm that has provided comprehensive legal support for community associations since 1990, with offices serving clients across Virginia and Washington, D.C. The firm’s practice focuses on community association law and related legal services, and its site also references business counseling, litigation, and insurance-defense matters for association clients. Its services are positioned for condominium and homeowners associations, reflecting a legal-services profile within the finance, legal and insurance-related sector. Chadwickwashington.com was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | The Dominguez Firm, LLP id19850 View details | United States | Finance / Legal / Insurance | — | |
|
dominguezfirm.com belongs to The Dominguez Firm, a Southern California personal injury law firm based in Los Angeles, California, serving clients across the region. The firm describes itself as a full-service practice focused on personal injury matters and related legal representation, with consultations available through its website and published office locations in California. Public-facing profiles also identify Juan J. Dominguez as the founder and managing partner of the firm. It was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | USClaims id19849 View details | United States | Finance / Legal / Insurance | — | |
|
USClaims operates in the US financial services and legal funding niche, offering pre-settlement litigation financing for personal injury claimants and their attorneys. Its services are designed to provide nonrecourse cash advances tied to pending cases, with repayment generally dependent on case proceeds. The company describes nationwide support for plaintiffs involved in matters such as auto accidents, workplace injuries, premises liability, and medical malpractice, and it is based in Boca Raton, Florida, with business details also associated with Moorestown, New Jersey. It was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Dean & Fulkerson id19848 View details | United States | Finance / Legal / Insurance | — | |
|
dflaw.com is the website of Dean & Fulkerson, a business law firm in Troy, Michigan, serving businesses, municipalities, and individuals with personalized legal services and solutions. The firm describes itself as full-service, and its published attorney profiles include matters such as insurance coverage and claims, along with other legal work. Its public materials also highlight firm news and recognition within the legal market. It was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Pajcic & Pajcic id19847 View details | United States | Finance / Legal / Insurance | — | |
|
Pajcic & Pajcic is a Jacksonville, Florida law firm that focuses on serious personal injury and wrongful death matters for individuals and families. Founded in 1974, it serves clients in Florida and describes itself as a firm dedicated to public service and fair compensation. Its practice is centered on legal representation in the finance, legal, and insurance-adjacent claims environment common to injury litigation. The site was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Shutts id19846 View details | United States | Finance / Legal / Insurance | — | |
|
shutts.com is the website of Shutts & Bowen LLP, a Florida-based law firm founded in 1910 and headquartered in Miami, with offices across Florida. The firm provides full-service business law representation for individuals and companies, with practices and industry coverage that include financial services and other commercial sectors. Its stated client base spans local, national, and international matters. The domain was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Fenwick & West LLP id19845 View details | United States | Communication / Marketing | — | |
|
Fenwick & West LLP is a leading law firm based in Silicon Valley, California, specializing in the technology and life sciences sectors. The firm provides business counsel to nearly 50% of US tech companies valued above $25 billion and represents over 1,500 VC-backed companies including more than 70 unicorns. Founded in 1972, Fenwick guides visionary tech and life sciences companies and their investors through every stage of growth from startups to public offerings. The firm operates multiple offices across the United States including Mountain View, San Francisco, Seattle, and New York. Fenwick & West LLP was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Fenwick id19844 View details | United States | Other | — | |
|
fenwick.com represents Fenwick & West LLP, a leading law firm purpose-built to guide visionary technology and life sciences companies and their investors through every stage of growth. Founded in 1972 in Palo Alto, the firm became one of the first technology law firms globally and has incorporated major companies like Apple while taking Oracle and eBay public. With nearly 600 attorneys across seven U.S. offices, Fenwick is recognized as one of the most active venture capital law firms, representing over 70 unicorns valued at more than $1 billion. The firm focuses on advising clients from startups to public companies within the technology and life sciences sectors. fenwick.com was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Liberty Tax id19843 View details | United States | Communication / Marketing | — | |
|
libertytax.com belongs to Liberty Tax Service, a US-based tax preparation company that provides income tax filing, tax return preparation, and related bookkeeping services for individuals and small businesses. The company operates through a large network of offices across the United States and also offers online filing and tax support. Public company listings describe Liberty Tax as a franchised and company-owned tax service with corporate offices in Virginia Beach, Virginia, and Hurst, Texas. In threat-intelligence indexes, libertytax.com was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | McLaughlin & Stern id19842 View details | United States | Finance / Legal / Insurance | — | |
|
mclaughlinstern.com is the website of McLaughlin & Stern, LLP, a US law firm serving businesses and individuals. The firm says it has provided sophisticated legal services since 1898 and offers counseling across corporate, securities, taxation, hospitality, finance, and related regulatory matters. Its practice descriptions emphasize representation in transactions, compliance, financing, and other business legal needs. The domain was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Roger Keith and Sons Insurance Agency id19841 View details | United States | Finance / Legal / Insurance | — | |
|
Roger Keith & Sons Insurance Agency is a full-service independent insurance agency headquartered in Brockton, Massachusetts, with additional branches in Lakeville, Weymouth, Marion, and Dennis Port. The firm offers a wide range of insurance and related financial products tailored to individuals and businesses across Massachusetts. It provides specialized solutions such as directors and officers insurance for leadership roles and tailored coverage for social service providers. As a long-established agency founded in 1869, it serves clients with personalized auto, home, renters, and other coverage options. The company was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Advantage Group GA id19840 View details | United States | Finance / Legal / Insurance | — | |
|
Advantage Group GA is a Schofield, Wisconsin-based insurance and financial services company that specializes in worksite benefits. Its website says the firm offers tailored insurance solutions and flexible coverage options for employers and employees, including support across billing, claims, and carrier relationships. Public business listings also place it in the Finance, Legal, and Insurance space and note a U.S. presence. Advantage Group GA was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Cors & Bassett id19839 View details | United States | Other | — | |
|
corsbassett.com belongs to Cors & Bassett, a Cincinnati, Ohio law firm that provides full-service legal representation across a wide range of practice areas. The firm says its attorneys handle complex legal matters for clients and has served the region for more than 90 years. Business directory data classifies Cors & Bassett as a private legal services company with about 33 employees at 201 E. Fifth St. in Cincinnati. It was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | IFG Companies id19838 View details | United States | Finance / Legal / Insurance | — | |
|
IFG Companies is a privately held U.S. insurance group founded in 1985 and based in Hartford, Connecticut, with additional offices in cities including Chicago, Scottsdale, Alpharetta, and Chapel Hill. The company provides property-casualty insurance and works with wholesale producers across the United States, with a focus on specialty insurance operations. Public company materials also describe IFG Companies as one of the largest privately held insurance groups in the country. It was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Kisling Nestico & Redick id19837 View details | United States | Finance / Legal / Insurance | — | |
|
knrlegal.com is the website of Kisling, Nestico & Redick, LLC, one of Ohio’s largest personal injury law firms, serving clients statewide from offices in cities including Akron, Cleveland, Columbus, Dayton, and Toledo. The firm represents injured clients in matters such as car accidents, wrongful death, and other injury claims, and it offers free initial consultations. Its public site presents the firm as a U.S.-based legal services provider focused on personal injury representation across Ohio. It was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | NCheng id19836 View details | United States | Communication / Marketing | — | |
|
Ncheng.com is the official website of NCheng LLP, a certified public accounting firm and expert financial advisory service based in New York, US, specializing in nonprofit organizations. The firm delivers comprehensive financial management, audit, tax, advisory, and technology services tailored to mission-based organizations since 1989. It also integrates advanced technology solutions to enhance financial resilience and operational efficiency for nonprofits. Ncheng.com was listed as a ransomware victim associated with leakeddata, with no confirmed details on stolen data or breach specifics. |
|||||
| Ransomware | ADM LAW id19835 View details | United States | Finance / Legal / Insurance | — | |
|
admlaw.com is the website of Ahmuty, Demers & McManus LLP, a civil defense litigation law firm based in the greater New York and New Jersey area. The firm maintains offices in New York City and Albertson, New York, and its attorney profiles and practice pages show work across defense litigation, including general liability and insurance-related matters. Its site presents the firm as serving clients in litigation and related advisory work within the legal services sector. It was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | McCague Borlack id19834 View details | Canada | Finance / Legal / Insurance | — | |
|
McCague Borlack LLP is one of Toronto's leading litigation law firms and the largest insurance boutique law firm in Canada, operating primarily in Ontario with offices in Toronto and Ottawa. The firm specializes in insurance coverage, property and casualty law, commercial disputes, and global litigation, serving primary insurers, excess insurers, and liability programs across the legal market. Its practice includes a balanced mix of senior, intermediate, and junior lawyers with expertise in virtually all lines of insurance and related legal issues. McCague Borlack LLP was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | First Financial Equity id19833 View details | United States | Finance / Legal / Insurance | — | |
|
FFEC Wealth Partners is an independent financial planning and broker-dealer firm headquartered in Scottsdale, Arizona, offering scalable financial solutions to business owners and individuals. The firm provides investment advisory services, portfolio design, and integrated financial planning tailored to unique lifestyle and business goals. With over $92.8 million in revenue and 93 employees, FFEC operates as a registered broker-dealer under FINRA, serving clients across Arizona, Nevada, and Texas. The company was listed as a ransomware victim associated with the threat actor leakeddata, though no specifics on data loss or breach confirmation are publicly disclosed. |
|||||
| Ransomware | Barst Mukamal & Kleiner id19832 View details | United States | Hospitality / Food & Beverage / Tourism | — | |
|
barstlaw.com is the website of Barst & Mukamal LLP, a New York City law firm founded in 1930 that focuses on immigration law and related business-law services. The firm states that it provides comprehensive legal immigration services and visa guidance for individuals and companies, and it operates from Manhattan offices in New York, US. Barst & Mukamal LLP presents itself as one of the oldest immigration law firms in the United States. It was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Olinsky Law Group id19831 View details | United States | Finance / Legal / Insurance | — | |
|
windisability.com operates as the digital platform for Olinsky Law Group, a prominent US-based firm specializing in Finance, Legal, and Insurance sectors, with principal offices in Syracuse, New York and a regional center in Orlando, Florida. The firm provides comprehensive legal services focused on Long-Term Disability claims, Social Security Disability benefits, and attorney referrals, assisting individuals navigating insurance company internal denials through to Federal Court. Clients can securely manage legal payments and access specialized guidance for disability appeals and benefit eligibility, supported by a team including Federal Court Supervising Paralegals and Chief Operations Officers. windisability.com was listed as a ransomware victim associated with the threat actor leakeddata, reflecting its inclusion in recent threat-intelligence records regarding compromised entities in the US Finance and Legal sectors. |
|||||
| Ransomware | Pembrook Group id19830 View details | United States | Construction / Real Estate | — | |
|
Pembrook Capital Management, which operates at pembrookgroup.com, is a New York-based real estate investment management firm focused on affordable and workforce housing, commercial real estate, and debt financing for developers. The company describes itself as an SEC-registered private equity fund manager and says it provides flexible financing for real estate projects in U.S. markets. Its website and company profiles place it in the construction and real estate ecosystem, with headquarters in New York City. It was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Colucci Law Group id19829 View details | United States | Finance / Legal / Insurance | — | |
|
Colucci Law Group is a Florida-based law firm in the United States that represents clients across the state. Its website highlights legal services in property insurance claims, bad faith insurance claims, personal injury, and business claim support, with offices in cities including Clearwater, Fort Myers, Dunedin, Panama City, and Jacksonville. The firm describes itself as helping clients navigate complex insurance and injury matters and offers consultations by phone and online contact forms. It was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | GreatFlorida Insurance Holding Corp. id19828 View details | United States | Finance / Legal / Insurance | — | |
|
greatflorida.com is the website of GreatFlorida Insurance, a Florida-based network of independent, franchised insurance agents serving customers across the state. The company offers online quotes and agency support for home, auto, commercial, renters, umbrella, boat, flood, and related insurance coverage, with local agents distributed throughout Florida. Its site also highlights partnerships with multiple carriers and claims service availability for personal and business insurance needs. The domain was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Paycor id19827 View details | United States | Communication / Marketing | — | |
|
Paycor is a U.S.-based HR software company headquartered in Cincinnati, Ohio, that provides payroll, talent, and human capital management tools for businesses. Its platform is designed to connect leaders with people, data, and expertise, and it offers solutions for recruiting, onboarding, development, compensation, and retention. The company positions itself as an HR and payroll technology provider with a focus on customer-focused innovation and broader workforce management capabilities. Paycor was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Baxter Baker Sidle Conn & Jones id19826 View details | United States | Finance / Legal / Insurance | — | |
|
Baxter Baker Sidle Conn & Jones, P.A. is a Baltimore, Maryland law firm with offices in Baltimore and Annapolis, serving clients in legal, business, and regulatory matters. Its practice areas include medical malpractice defense, health care, complex litigation, estates and trusts, government relations, administrative and regulatory law, tax, and insurance-related defense and coverage advice. The firm also represents individuals and businesses in commercial litigation, professional liability, and related transactional work. It was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Chicago Atlantic Group id19825 View details | United States | Construction / Real Estate | — | |
|
Chicago Atlantic Group is a Chicago, Illinois-based private market investment firm with real estate and credit expertise. Its business spans real estate finance and related investment activities in the United States, including a commercial mortgage REIT platform focused on senior secured, real-estate-backed lending. The firm emphasizes entrepreneurial, multi-asset-class investing and operates through affiliated entities tied to U.S. property and credit markets. Chicago Atlantic Group was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Mauldin & Jenkins id19824 View details | United States | Finance / Legal / Insurance | — | |
|
Mauldin & Jenkins, LLC is a leading Certified Public Accounting firm based in Atlanta, Georgia, providing assurance, tax, consulting, and advisory services to clients across the United States. The firm specializes in serving industries including financial institutions, insurance agents, underwriters, and legal entities, offering tailored accounting and compliance solutions. With additional offices in Albany, Macon, Birmingham, and Bradenton, Mauldin & Jenkins delivers high-quality tax, assurance, and CAAS services to help clients achieve their goals. The company was listed as a ransomware victim associated with the threat actor leakeddata, with no confirmed details on data exposure or breach specifics. |
|||||
| Ransomware | Miller Canfield id19823 View details | United States | Finance / Legal / Insurance | — | |
|
Miller Canfield is a U.S.-based law firm and financial services firm that provides legal counsel across commercial activity, with services spanning public finance, financial services, insurance litigation, and related business matters. The firm works with clients in areas such as government, public sector, health care, and other transactional and litigation matters, with offices and attorneys in Michigan and Illinois. Its practice profile reflects a multi-disciplinary focus on legal, regulatory, and finance-related representation for institutional and commercial clients. Miller Canfield was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | CRC Group id19822 View details | United States | Finance / Legal / Insurance | — | |
|
CRC Group is a leading, independent pure-play brokerage and underwriting specialty insurance distributor headquartered in Charlotte, North Carolina, with offices across the US and Canada. The company places over $30 billion in annual premium, partnering with more than 650 carriers to deliver comprehensive solutions for clients in Finance, Legal, and Insurance sectors. CRC Group offers highly personalized service through its wholesale and specialty insurance businesses, including Builders Risk, Casualty, and Complex Risks. CRC Group was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | 44North id19821 View details | United States | Healthcare / Pharma | — | |
|
44North is a US-based organization operating in the healthcare and pharmaceutical sector, providing benefit services and related offerings to over 100,000 lives with a team of more than 100 employees. The entity functions as a privately held benefit provider, serving as the largest such provider in its state while delivering comprehensive care and benefit solutions. It was listed as a ransomware victim associated with leakeddata, reflecting its inclusion in threat-intelligence records regarding data security incidents. |
|||||
| Ransomware | EW Smith Insurance Agency id19820 View details | United States | Communication / Marketing | — | |
|
EW Smith Insurance Agency is a long-established independent insurance firm based in Michigan, US, specializing in personal, business, and life insurance coverage. Founded in 1917, the agency operates three locations in Wyandotte, Flat Rock, and Shelby Township, offering personalized coverage to reduce customer costs. The firm provides auto, home, renters, and vehicle insurance through over 65 agents across Southeast Michigan. EW Smith Insurance Agency was neutrally listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Anders CPAs + Advisors id19819 View details | United States | Finance / Legal / Insurance | — | |
|
Anders CPAs + Advisors is a U.S.-based accounting and advisory firm headquartered in St. Louis, Missouri, that provides audit, tax, and consulting services to businesses and individuals. The firm specializes in delivering tailored financial strategies, helping clients manage compliance, improve performance, and achieve long-term growth through industry-specific expertise, particularly in the legal and professional sectors. Anders offers advisory, audit and assurance, and tax services to businesses large and small, enabling clients to focus on their core operations. The organization was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Black , Bashor & Porsch id19818 View details | Finance / Legal / Insurance | — | ||
|
Black, Bashor & Porsch, LLP is a certified public accounting firm based in Sharon, Pennsylvania, serving clients in western Pennsylvania and eastern Ohio since 1952. The firm provides professional services that include auditing, business and personal tax planning and preparation, and related financial services for for-profit, nonprofit, and governmental clients. Its practice sits at the intersection of Finance, Legal, and Insurance support functions, with offerings that also include debt, financing, and real-estate settlement services. It was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Shea Barclay Group id19817 View details | United States | Hospitality / Food & Beverage / Tourism | — | |
|
Shea Barclay Group was a privately owned insurance brokerage headquartered in Tampa, Florida, serving clients in the hospitality, food and beverage, and tourism sectors. Public listings also show the firm operating under the SGP Advisors name after a later rebrand, reflecting its brokerage and advisory services for business clients. The company’s profile identifies it as part of the insurance services market, with a Florida base and a client focus tied to travel, dining, and hospitality operations. It was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | ATLAS CPAs & Advisors id19816 View details | United States | Finance / Legal / Insurance | — | |
|
ATLAS CPAs & Advisors is a US accounting and advisory firm based in Englewood, Colorado, with offices in other US locations. It provides tax, accounting, audit, consulting, and related financial services for individuals and businesses, and its offerings include advanced tax planning and advisory support. Public company profiles and its own site describe it as part of the broader Finance / Legal / Insurance services space. It was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Klehr Harrison Harvey Branzburg id19815 View details | United States | Finance / Legal / Insurance | — | |
|
Klehr Harrison Harvey Branzburg LLP is a US law firm serving clients in the legal, financial, real estate, and insurance-related sectors. The firm is based in Philadelphia, Pennsylvania, and also maintains offices in New Jersey and Delaware. Its practice areas include bankruptcy and restructuring, litigation, real estate and finance, insurance recovery, and other business-focused legal services. In threat-intelligence indexing, it was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Inspere Insurance Solutions id19814 View details | United States | Finance / Legal / Insurance | — | |
|
Inspere Insurance Solutions is a US insurance company operating in the finance, legal, and insurance space. Public business profiles describe it as an insurance agency that provides health, life, long-term care, supplemental, and retirement-related services, serving clients across the United States. Microsoft also describes Insphere Insurance Solutions as serving middle-income individuals and small businesses by offering insurance from multiple carriers. The entity was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Cross Valley FCU id19813 View details | United States | Finance / Legal / Insurance | — | |
|
Cross Valley FCU, formally Cross Valley Federal Credit Union, is a Pennsylvania-based credit union serving members in the United States. It offers personal loans, share-secured and certificate-secured borrowing, personal lines of credit, online and mobile banking, and branch-based financial services. The credit union says it operates six branches in the Wyoming Valley and a student-focused branch, and it serves members in nearby Pennsylvania communities. Its public materials also emphasize membership-based banking, loan products, and financial counseling. It was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Metro Public Adjustment id19812 View details | United States | Public Sector | — | |
|
Metro Public Adjustment is a public adjuster firm headquartered in Bensalem, Pennsylvania, serving property owners across the United States in the public sector by negotiating insurance claims. The company advocates for homeowners and businesses to maximize payouts from property damage insurance claims, acting as a negotiator between property owners and insurance companies. It provides expert assistance with insurance claims, including free consultations and support from experienced public adjusters. Metro Public Adjustment was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Palomar Insurance id19811 View details | United States | Finance / Legal / Insurance | — | |
|
Palomar Insurance is a US-based insurance company operating in the finance, legal, and insurance space, with headquarters in La Jolla, California. Public company information describes Palomar as a specialty insurer that provides property and casualty insurance products to individuals and businesses, including residential and commercial coverage. Its offerings include niche lines such as earthquake, flood, inland marine, and other specialty property and casualty products. In threat-intelligence catalogs, Palomar Insurance was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Liberty Tax Service Inc id19810 View details | United States | Communication / Marketing | — | |
|
Liberty Tax Service Inc is a United States-based tax preparation company that offers professional income tax preparation and online tax filing services. The business operates through a large retail network across the United States and Canada, serving individual taxpayers and supporting franchise-based tax offices. Public company information describes Liberty Tax as a personal income tax industry leader with thousands of tax professionals and retail branches. In threat-intelligence indexing, Liberty Tax Service Inc was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Kotz Sangster Wysocki id19809 View details | United States | Finance / Legal / Insurance | — | |
|
Kotz Sangster Wysocki P.C. is a Detroit, Michigan-based business law firm with additional presence in Bloomfield Hills, serving middle-market companies across Michigan and beyond. The firm says it concentrates on representing businesses and has particular experience in financial services, including banking, finance, and insurance-related matters. Its practices also include broader corporate and commercial legal counseling for closely held and entrepreneurial companies. In threat-intelligence listings, Kotz Sangster Wysocki was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Marriott International Inc id19808 View details | United States | Hospitality / Food & Beverage / Tourism | — | |
|
Marriott International Inc is a US-based hospitality company headquartered in Bethesda, Maryland, and one of the world’s largest hotel operators. It runs, franchises, and licenses lodging brands across hotels, residential, and timeshare properties, serving travelers and business guests through a broad portfolio of properties worldwide. The company also has a significant food-service footprint within the accommodation and food services sector. In threat-intelligence indexing, Marriott International Inc was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Cantey Hanger LLP id19807 View details | United States | Other | — | |
|
Cantey Hanger LLP is a Texas-based law firm serving businesses and individuals through a broad range of legal services. Its practice areas include commercial litigation, investigations, white collar criminal defense, water rights, wage and hour matters, vaccine litigation, and trusts and estates, with offices in Fort Worth and other Texas locations. The firm describes itself as a full-service practice providing legal support to clients across the Dallas-Fort Worth area and beyond. Cantey Hanger LLP was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | JMJ Associates id19806 View details | United States | Services | — | |
|
JMJ Associates is a management consulting firm based in Austin, Texas, United States, with a focus on culture transformation and enterprise change. The company says it helps organizations improve safety, sustainability, performance, leadership development, and workplace culture, serving clients in complex operating environments across multiple regions. Public profiles also describe JMJ as a global consulting organization with experience in energy, infrastructure, mining, and construction-related industries. It was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Prime Consulting Group id19805 View details | Communication / Marketing | — | ||
|
Prime Consulting Group appears to be a U.S.-based consulting company focused on communication and marketing services, with a website that promotes its work as a trusted Smartsheet expert and offers client support by phone and email. Its public materials also reference marketing communications, indicating an emphasis on helping customers use and manage its services. The company name is associated with a business operating in the United States, and available records place a Prime Consulting Group entity in Richmond, Texas. It was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Ball Eggleston Law Firm id19804 View details | United States | Finance / Legal / Insurance | — | |
|
Ball Eggleston, PC is a law firm serving Greater Lafayette, Indiana, and surrounding communities from Lafayette, Indiana, in the United States. The firm provides legal services across personal injury, family law, estate planning and administration, business law, real estate, appellate practice, and general litigation. Its practice profile places it within the Finance / Legal / Insurance sector and reflects a broad regional legal services offering. It was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Tetra Technologies Inc id19803 View details | United States | IT | — | |
|
TETRA Technologies Inc is a US-based energy services and solutions company headquartered in Spring, Texas, with operations that support the upstream oil and gas industry. Its offerings include completion fluids and products, water management, and related production and testing services, alongside industrial chemicals and critical minerals activities. The company operates internationally through subsidiaries and serves customers across multiple regions. TETRA Technologies Inc was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Lincoln Investment Planning LLC id19802 View details | United States | Finance / Legal / Insurance | — | |
|
Lincoln Investment Planning LLC is a U.S.-based financial services firm that operates as a full-service broker-dealer and registered investment adviser. It says it serves more than 315,000 investors and represents over $60 billion in assets, with offerings that include investment planning, insurance planning, estate planning, education planning, and retirement services. The company’s business sits within the finance, legal, and insurance-adjacent advisory space, where it supports financial professionals and individual investors. It was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Quintairos Prieto Wood & Boyer PA id19801 View details | United States | Communication / Marketing | — | |
|
Quintairos, Prieto, Wood & Boyer, P.A. is a US law firm headquartered in Miami, Florida, with offices across multiple states. The firm provides comprehensive legal services to public and private companies, insurance carriers, professionals, entrepreneurs, and individuals, with work spanning complex commercial litigation, regulatory law, corporate law, and related matters. Its profile and directory listings place it in the legal services sector rather than communications or marketing. Quintairos Prieto Wood & Boyer PA was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Bass , Berry & Sims PLC id19800 View details | United States | Finance / Legal / Insurance | — | |
|
matters.focused appears to operate in the US finance, legal, and insurance space, a sector that commonly includes services tied to financial matters, legal support, and insurance-related advisory or coverage work. Public industry descriptions show that firms in this category may advise on insurance transactions and regulatory matters, while legal insurance can provide access to attorney networks and related legal services. Based on its name and sector labeling, matters.focused is best characterized as a domain-associated business entity in these professional-services markets. It was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Essex Property Trust id19799 View details | United States | Construction / Real Estate | — | |
|
Essex Property Trust is a publicly traded real estate investment trust that acquires, develops, redevelops, and manages multifamily residential properties. The company invests primarily in apartments located in California and the Seattle metropolitan area, operating as a fully integrated REIT. Headquartered in San Mateo, California, Essex Property Trust engages in the ownership, operation, management, acquisition, and development of residential properties across select West Coast markets. Essex Property Trust was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Davenport & Company LLC id19798 View details | United States | Finance / Legal / Insurance | — | |
|
Davenport & Company LLC is a U.S. financial services firm headquartered in Richmond, Virginia, and registered as both a brokerage and investment adviser. It provides wealth management and financial planning services, along with portfolio management, pension consulting, insurance, corporate finance, and public finance offerings. The firm serves individuals and institutions through a long-established advisory platform and multiple office locations. Davenport & Company LLC was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | AG Adjustment id19797 View details | United States | Retail / E-commerce | — | |
|
AG Adjustment is a US-based business associated with the retail and e-commerce sector, and public company profiles describe it as AG Adjustments, a commercial collection agency founded in 1972 and headquartered in Melville, New York. Its services include business debt collection, accounts-receivable management outsourcing, and related collection support for commercial clients. The company also operates under the Cadex brand and maintains additional US locations. It was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Jacobs Entertainment Inc id19796 View details | United States | Services | — | |
|
Jacobs Entertainment Inc is a US-based entertainment services company that develops, owns, and operates gaming and entertainment facilities. The company says its portfolio spans multiple U.S. regions and includes gaming, lodging, and mixed-use properties designed to create a broad guest experience. Public company profiles describe it as a Colorado-based operator with a long-running presence in casino and hospitality-related development and operations. Jacobs Entertainment Inc was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | McCague Borlack LLP id19795 View details | Canada | Finance / Legal / Insurance | — | |
|
McCague Borlack LLP is an Ontario-based law firm in Canada, with offices in Toronto, Ottawa, Kitchener, London, and Barrie. It describes itself as one of Ontario’s leading litigation firms and the largest insurance boutique law firm in Canada, with work focused on litigation, advocacy, and insurance law matters. Its practice includes insurance coverage disputes and related risk-management services for individual and multiple retainer clients. McCague Borlack LLP was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Lane Gorman Trubitt id19794 View details | United States | Finance / Legal / Insurance | — | |
|
Lane Gorman Trubitt (LGT) is a Texas-based accounting and advisory firm headquartered in Dallas, with additional presence in Houston, serving clients in accounting, assurance, tax, and consulting. The firm describes its work across areas including audit, tax, financial advising, retirement planning, estate and trust, and related business services for sectors such as construction, manufacturing, nonprofits, real estate, and dealers. As a certified public accounting firm founded in 1950, LGT operates in the US professional-services market with a focus on finance-adjacent advisory and compliance work. It was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | AGT Slots id19793 View details | United States | Services | — | |
|
AGT Slots is the North American web presence for Ainsworth Game Technology, a gaming company that markets and supports slot and poker machines for casino operators. Its site describes a fully integrated operation covering design, development, assembly, testing, sales, and field service, with U.S. contact details in Las Vegas, Nevada. The company also says it maintains main offices in the United States, Australia, and Latin America. AGT Slots was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Integrity Home Mortgage Company id19792 View details | United States | Finance / Legal / Insurance | — | |
|
Integrity Home Mortgage Company is a US-based Finance and Legal lender headquartered in Winchester, Virginia that provides tailored home financing solutions including first-time homebuyer loans, refinances, and construction loans. The company operates as an Equal Housing Lender with additional offices in Maryland and Virginia, serving diverse financial needs through originating residential mortgages to grow better communities. Its offerings are designed to align with borrowers' short-term and long-term financial and investment goals via customized financing packages. Integrity Home Mortgage Company was neutrally listed as a ransomware victim associated with the threat actor leakeddata. |
|||||
| Ransomware | Hannover Re id19791 View details | Germany | Finance / Legal / Insurance | — | |
|
Hannover Re is a German reinsurer based in Hannover, Lower Saxony, and operates in the finance, legal, and insurance space. It is one of the world’s leading reinsurers, providing property and casualty reinsurance as well as life and health reinsurance to clients worldwide. The group designs tailored reinsurance solutions and maintains a global presence across its business lines. It was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | TWFG Insurance id19790 View details | United States | Finance / Legal / Insurance | — | |
|
TWFG Insurance, also known as The Woodlands Financial Group, is a privately owned independent insurance provider specializing in personal and commercial lines across Texas, Louisiana, and the broader United States. The company partners with hundreds of insurance carriers to deliver auto, home, and business coverage at fair prices, treating customers like family rather than policy numbers. Headquartered in The Woodlands, Texas, TWFG operates nationally with licensed presence in all 50 states and has expanded to 15 new states and 144 retail locations in 2024. TWFG Insurance was neutrally listed as a ransomware victim associated with leakeddata, with no confirmed details on stolen data types or breach specifics. |
|||||
| Ransomware | Geocon Inc. id19789 View details | United States | Manufacturing / Engineering | — | |
|
Geocon Inc. is a professional engineering consulting firm established in 1971, headquartered in Murrieta, California, with operations across the United States. The company specializes in geotechnical engineering, environmental services, engineering geology, materials testing, and construction inspection. It serves clients in the manufacturing and engineering sectors by providing comprehensive ground and below-ground solutions. Geocon Inc. operates nine offices nationwide, offering expert technical services for complex infrastructure projects. The company was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Liebert Cassidy Whitmore Attorneys id19788 View details | United States | Finance / Legal / Insurance | — | |
|
Liebert Cassidy Whitmore Attorneys is a California-based law firm serving public agencies, educational institutions, nonprofits, and other employers with labor, education, and employment law services. The firm describes itself as California’s premier labor, education, and employment law firm, offering legal representation, advice, training, and related compliance support. Its practice emphasis includes labor relations, wage-and-hour matters, and workforce issues for public-sector and institutional clients. Liebert Cassidy Whitmore Attorneys was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Rosenbauer America id19787 View details | United States | Other | — | |
|
Rosenbauer America is a U.S.-based manufacturer of firefighting vehicles, fire apparatus, and related equipment for fire protection and disaster response. The company is part of the Rosenbauer group, which describes itself as a global leader in firefighting equipment and custom fire trucks, with North American operations tied to manufacturing and support in the United States. Its public company profiles place it in the broader industrial and emergency-response sector and identify headquarters and operations in the U.S. Rosenbauer America was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Haynie & Company PC id19786 View details | United States | Public Sector | — | |
|
Haynie & Company PC is a U.S.-based CPA and management consulting firm that provides audit, tax, client advisory, accounting, and business consulting services. The firm describes itself as a full-service accounting practice and operates from multiple offices, including Dallas, Texas, while serving businesses and individuals across its markets. Its public-facing materials emphasize professional accounting, tax, and advisory offerings rather than a government agency or public administration role. Haynie & Company PC was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Williams, Kastner & Gibbs PLLC id19785 View details | United States | Services | — | |
|
Williams Kastner & Gibbs PLLC is a Seattle, Washington law firm that provides business-focused legal services to clients across Washington, Oregon, and the broader Pacific Northwest. The firm offers representation in practice areas including labor and employment, litigation, real estate, public sector matters, and other advisory services through its attorneys and support staff. Based in the U.S. services sector, it operates from offices in Seattle, Spokane, and Portland. Williams Kastner & Gibbs PLLC was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Sanchez Daniels & Hoffman LLP id19784 View details | United States | Finance / Legal / Insurance | — | |
|
Sanchez Daniels & Hoffman LLP is a Chicago-based, mid-size civil defense litigation law firm serving clients in the United States. The firm handles civil cases involving insurance coverage, commercial disputes, personal injury, property damage, construction, product liability, environmental matters, employment law, public finance, and appellate litigation. It presents itself as a leading Illinois law firm with extensive experience in civil defense and insurance-related work. Sanchez Daniels & Hoffman LLP was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Managed Benefits Advisors LLC id19783 View details | United States | Communication / Marketing | — | |
|
Managed Benefits Advisors LLC is a US-based company in the communication and marketing sector. Public business listings for Managed Benefits, Inc. describe it as a privately owned consulting firm in Glen Allen, Virginia, serving the Mid-Atlantic States and beyond, with services centered on employee benefits, HR solutions, and training. The company presents itself as an advisory provider that supports employers with benefits-related planning and communication. Managed Benefits Advisors LLC was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Ted A Greve & Associates PA id19782 View details | United States | Communication / Marketing | — | |
|
Ted A Greve & Associates PA is a United States personal injury law firm based in North Carolina and serving clients across North Carolina, South Carolina, and Georgia. The firm represents individuals in injury matters and promotes legal services focused on case evaluation, claim preparation, and advocacy in personal injury disputes. Public business listings and the firm’s website identify it as Ted A. Greve & Associates, P.A., also branded as Dr. Ted Injury Law. It was listed as a ransomware victim associated with leakeddata. |
|||||
| Ransomware | Jardim, Meisner & Susser PC id19781 View details | United States | Finance / Legal / Insurance | — | |
|
Jardim, Meisner & Susser PC is a full-service law firm based in Florham Park, New Jersey, specializing in litigation, corporate matters, employment and benefits law, construction litigation, and insurance coverage defense. The firm operates with additional offices in Red Bank, New Jersey, and New York, serving clients across the Finance, Legal, and Insurance sectors. It provides comprehensive legal services including residential and commercial real estate, civil litigation, and benefit plan compliance. The firm was neutrally listed as a ransomware victim associated with the leakeddata threat actor, reflecting emerging cyber threats in its industry. |
|||||