Ransomware victim disclosure
← All victimsOffice Furniture Group
Claimed by Pear · listed 2 months ago
Status timeline
- ListedMay 9, 2026
- Data leakeddate unknown
At a glance
- Group
- Pear
- Status
- Data leaked
- Country
- United States
- Sector
- Manufacturing
- Listed on leak site
- May 9, 2026
About the victim
AI dossier — public-source company profileOffice Furniture Group (OFG) is a US-based workplace design and office furniture solutions company operating at ofginc.com. With over 25 years of experience, they provide systems and furniture solutions including desking systems, panel systems, height-adjustable tables, lounge and soft seating, and architectural walls. They work with manufacturers such as Teknion, Studio TK, and Gus Modern to serve commercial clients.
- Industry
- Office Furniture & Workplace Design
Attack summary
Severity: high — Confirmed exfiltration and publication of significant business data including customer PII, financial/transaction records, HR data, and email correspondence across multiple categories; no indication of government/medical/defence data that would elevate to critical.The ransomware group 'pear' claims to have exfiltrated a broad range of sensitive data from Office Furniture Group, including financial records, HR data, customer PII, partner and vendor data, payment and transaction details, email correspondence, project drawings, and cloud-stored data from OneDrive and Dropbox. The disclosure status is listed as data_published, indicating the stolen data has been released.
Data the group says was taken
AI dossier — extracted from the leak post- Financial records
- HR data
- Customers' private data
- Partners' and vendors' data
- Payments and transactions details
- Mailboxes and email correspondence
- Project files and drawings
- OneDrive stored data
- Dropbox stored data
What the group claims
Interior workplace solutions provider
The leak post
captured from the group's site| | | | | | Financials, HR, Customers’ Private Data, Partners’ and Vendors’ Data, Payments’ & Transactions’ Details, Mailboxes & Email Correspondence, Projects & Drawings, OneDrive & Dropbox stored data, etc. | | --- | | | | | |
Sources
Source
Indexed 2 months agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

