Ransomware victim disclosure
← All victimsInterior Metals
Claimed by Ransomhouse · listed 2 years ago
Status timeline
- ListedNov 27, 2024
- Data leakeddate unknown
At a glance
- Group
- Ransomhouse
- Status
- Data leaked
- Country
- Canada
- Sector
- Business Services
- Listed on leak site
- Nov 27, 2024
- Data size
- 743 GB
- Ransom demanded
- $740
About the victim
AI dossier — public-source company profileInterior Metals is a WBE-certified architectural sheet metal fabrication company based in New York City with over 30 years of experience. The company specializes in custom convector enclosures, architectural grilles, UL-listed enclosures, stone anchors, and custom metal fabrications for building owners, developers, general contractors, and construction managers.
- Industry
- Architectural Sheet Metal Fabrication & Custom Metal Products
- Address
- New York, NY
Attack summary
Severity: medium — 743 GB of data exfiltrated from a fabrication/services company; no specific indication of regulated data (PII at scale, medical, financial) but significant volume suggests operational and client data at risk. Disclosed status indicates data has been published.Ransomware operator Ransomhouse claims to have encrypted Interior Metals' systems and exfiltrated 743 GB of data. The group published the claim on their leak site with the company listed among multiple victims.
Data the group says was taken
AI dossier — extracted from the leak post- business records
- client information
- project documentation
- company communications
What the group claims
Interior Metals, a WBE certified company based in New York City, specializes in architectural sheet metal fabrications. While the company features custom convector enclosures and architectural grilles, Interior Metals has been providing building owners, developers, general contractors
The leak post
captured from the group's site```
{"data":[{"id":"a1894b76b7004c75a3a0845799af49956592e3d9","display":"animated","header":"HOT NEWS","info":" Trellix is a global cybersecurity company.","url":"","sort":1,"views":"436242"},{"id":"336b257f582b17573c97578efd4b22762bf77344","sort":2,"header":"Trellix (McAfee & FireEye)","url":"https://www.trellix.com/","private":"false","revenue":"1.5-2 B$","employees":"5000","info":"Trellix is a global cybersecurity company formed from the October 2021 merger of McAfee Enterprise and FireEye. It provides services to over 50,000 business and government customers worldwide, protecting more than 200 million endpoints. The companys open and native extended detection and response (XDR) platform helps organizations confronted by todays most advanced threats gain confidence in the protection and resilience of their operations. Trellix, along with an extensive partner ecosystem, accelerates technology innovation through machine learning and automation to empower over 40,000 business and government customers with living security","statusDate":"DEPENDS ON YOU","status":"EVIDENCE","published":"NOT YET","action":"Encrypted","actionDate":"17/04/2026","volume":"~","content":"cybersecurity.html"…Sources
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

