Ransomware victim disclosure
← All victimsRyland Peters & Small
listed as rylandpeters.com · Claimed by Apt73 · listed 2 years ago
Status timeline
- ListedAug 22, 2024
- Data leakeddate unknown
At a glance
- Group
- Apt73
- Status
- Data leaked
- Country
- United Kingdom
- Sector
- Business Services
- Listed on leak site
- Aug 22, 2024
About the victim
AI dossier — public-source company profileRyland Peters & Small (operating as CICO Books) is an independent publisher based in the United Kingdom specializing in beautifully illustrated books across interior design, home & garden, food & drink, crafts, health, and children's titles. They operate an e-commerce site selling books directly to consumers with UK shipping.
- Industry
- Publishing & Books
Attack summary
Severity: medium — Data has been published by the threat actor (disclosed_status confirms 'data_published'), indicating confirmed exfiltration. However, without visibility into the specific data categories, volume, or evidence of regulated/sensitive content (PII at scale, financial, medical), the impact cannot be assessed as critical or high. The absence of stated ransom and limited post details suggest moderate severity.APT73 claims to have compromised Ryland Peters & Small and published data from the breach. The group has disclosed the attack but no specific details about exfiltrated data types or operational impacts are provided in the available post excerpt.
Data the group says was taken
AI dossier — extracted from the leak post- business records
- customer data
- operational files
What the group claims
Ryland Peters & Small and CICO Books is an independent, illustrated publisher creating beautifully produced books in the areas of interior design, ...
Sources
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

