Ransomware victim disclosure
← All victimsTrendsetter Engineering
Claimed by Royal · listed 3 years ago
Status timeline
- ListedFeb 8, 2023
- Data leakeddate unknown
At a glance
- Group
- Royal
- Status
- Data leaked
- Country
- United States
- Sector
- Energy & Utilities
- Listed on leak site
- Feb 8, 2023
- Data size
- 1 TB
- Ransom demanded
- $9
About the victim
AI dossier — public-source company profileTrendsetter Engineering is a premier provider of specialized subsea solutions for oil and gas companies globally, headquartered in Houston, Texas. The company designs and manufactures subsea trees, manifolds, connection systems, HIPPS, capping stacks, and hydraulic/mechanical intervention systems. It also offers well intervention, source control planning, consulting, and FEED services, with operations extending to international markets including Brazil.
- Industry
- Subsea Oil & Gas Engineering & Equipment
- Address
- 10430 Rodgers Road, Houston, Texas 77070
Attack summary
Severity: critical — Confirmed exfiltration and publication of 1 TB of data including large-scale PII (employees, clients, dealers), executive email communications (340 GB), and SQL databases — constituting regulated personal data at scale alongside sensitive business and financial records from a critical energy-sector supplier.The Royal ransomware group claims to have exfiltrated 1 TB of data from Trendsetter Engineering's network, including personal/HR/finance/project data, 340 GB of CEO and top management mailboxes, and 150 GB of SQL databases containing employee, client, and dealer personally identifiable information. The post indicates data has been published and provides an archive password, suggesting active data disclosure.
Data the group says was taken
AI dossier — extracted from the leak post- Personal data (HR records)
- Financial records
- Project documentation
- CEO and top management email mailboxes (340 GB)
- SQL databases (150 GB)
- Employee PII (name, address, phone, email)
- Client PII (name, address, phone, email)
- Dealer/partner PII (name, address, phone, email)
What the group claims
Trendsetter is a premier provider of specialized subsea solutions for oil and gas companies across the globe. We have stolen from their network 1TB in total, including: 1) personal data, HR, Finance, Projects etc.;2) CEO's and Top Management Mailboxes - 340 GB3) SQL Databases - 150 GBEmployee/client/dealers DB (Name, address, phone number, mail address etc.)Feel free to check!Archive password: Aknn234)@$9skod_09@#$FS@2D
Sources
- Victim sitetrendsetterengineering.com
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

