Ransomware victim disclosure
← All victimsConverting Equipment International
Claimed by Interlock · listed 4 hours ago
Status timeline
- ListedJul 16, 2026
- Data leakeddate unknown
At a glance
- Group
- Interlock
- Status
- Data leaked
- Country
- United Kingdom
- Sector
- Manufacturing
- Listed on leak site
- Jul 16, 2026
About the victim
AI dossier — public-source company profileConverting Equipment International (CEI) manufactures specialized equipment for the converting industry, including slitter rewinders, die cutters, finishers, and inspection systems. The company operates from a UK base and serves manufacturing customers with both standard and custom equipment solutions.
- Industry
- Industrial Manufacturing Equipment
Attack summary
Severity: medium — Confirmed exfiltration of business-sensitive data (contracts, financial records, customer lists) and employee personal data. However, no proof files or screenshots are advertised in the leak post, and no operational disruption is claimed. The data appears significant but lacks the scale or regulatory sensitivity required for 'high' classification.Interlock claims to have exfiltrated confidential information including equipment development details, contracts, customer relationships, subsidiary information, and financial records. The group alleges the company had a history of security negligence.
Data the group says was taken
AI dossier — extracted from the leak post- equipment development documentation
- customer contracts
- customer relationship data
- subsidiary information
- financial records
- employee personal data
What the group claims
CEI's mission is to produce high-quality equipment for the manufacturing industry through innovation, collaboration, and integrity. However, the company has a history of neglecting its own security, putting its customers and employees at risk. This negligence has resulted in the leakage of confidential information and personal data. We provide confidential information regarding equipment development, contracts, and customer relationships. We also have information about their subsidiaries and their entire financial structure.
Sources
Source
Indexed 4 hours agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

