A threat actor operating under the PayoutsKing brand (self-described as “Not RaaS”) has listed NTN Bearing Corporation of America on its extortion leak site, claiming to have exfiltrated 596 GB of data from the American manufacturer, a subsidiary of the global bearing maker NTN Corporation with revenue of $1.5B and approximately 4,700 employees. The dump reportedly includes drawings and 3D models for the US Army’s Joint Light Tactical Vehicle (JLTV) Family of Vehicles (FoV) Program, along with approximately 100 PDF files marked under DoD Directive 5230.25. The actor cites potential liability of up to $1.2 million per violation (per file or per person accessed) and an additional $1 million corporate violation penalty.

• Drawings and 3D models for the Joint Light Tactical Vehicle (JLTV) Family of Vehicles (FoV) Program for the US Army
• Approximately 100 PDF files marked within DoD Directive 5230.25
• Personal data for 7,500+ employees, priced at up to $2,500 per person
• Financial statements
• Quality testing reports
• Contracts
• Confidential documents
• Employees’ PII (Personally Identifiable Information)
• Internal correspondence
• Financial records
• Engineering data
• Contracts, agreements, and NDAs
• Liability cited at up to $1.2 million per violation per file or per person accessed, plus up to $1 million corporate violation penalty