📢 Unlock Exclusive Cyber Threat Intelligence
Powered by DarkWebInformer.com
Get foundational access to breach intelligence — track breaches, leaks, and threats in real-time with unfiltered screenshots and expert summaries.
⚠ Disclaimer
This report includes actual screenshots and/or text that may include unredacted personally identifiable information (PII) gathered from publicly available sources. The sensitive information presented within this report is intended solely for cybersecurity awareness and threat intelligence purposes. Dark Web Informer explicitly condemns unauthorized access, distribution, or misuse of the personal data displayed or referenced here. Users must treat exposed data responsibly and ethically.
📌 Overview
The ransomware group RHYSIDA has listed Cator, Ruma & Associates, a U.S.-based mechanical and industrial engineering firm, as their latest victim. Founded in 1959 and based in Denver, Colorado, the company serves architects and clients across the western and central United States. RHYSIDA claims to have exfiltrated sensitive internal documentation and personal identification records.
A public listing on the group’s Tor-based blog advertises the stolen data at 15 BTC, with a strict “one buyer only” policy and no option for reselling. The group has set a countdown of approximately 7 days before the data is published.
Key Details
| Attribute | Information |
|---|---|
| Date | 2025-05-28, 01:12:40 PM |
| Threat Actor | RHYSIDA |
| Victim Country | United States |
| Industry | Mechanical or Industrial Engineering |
| Organization | Cator, Ruma & Associates |
| Victim Site | catorruma.com |
| Category | Ransomware |
| Severity | Medium |
| Network | tor |
Subscriber-only content…
