Ransomware victim disclosure
← All victimsKrinos Foods
Claimed by Royal · listed 3 years ago
Status timeline
- ListedMar 6, 2023
- Data leakeddate unknown
At a glance
- Group
- Royal
- Status
- Data leaked
- Country
- United States
- Sector
- Food & Agriculture
- Listed on leak site
- Mar 6, 2023
About the victim
AI dossier — public-source company profileKrinos Foods LLC is one of the largest importers, distributors, and manufacturers of specialty foods in North America. The company imports over 3,000 frozen, refrigerated, and dry food products from more than 25 countries, including cheeses, olives, olive oils, and pasta. It operates across distribution and manufacturing functions and serves multiple markets under both exclusive and imported brand lines.
- Industry
- Specialty Food Importing, Distribution & Manufacturing
Attack summary
Severity: high — Data has been confirmed published by the group, indicating actual exfiltration of business data from a large North American food importer and manufacturer. While the specific data categories are not enumerated in the post, a company of this scale likely holds significant supplier, customer, and financial records. No evidence of regulated personal/medical data at scale prevents a critical rating.The Royal ransomware group claims an attack on Krinos Foods LLC and has published data associated with the company. The disclosure status indicates data has been published, though the specific nature of exfiltrated data and whether encryption occurred is not detailed in the post.
Data the group says was taken
AI dossier — extracted from the leak post- Business/operational data
- Supplier records
- Customer records
- Financial records (inferred)
What the group claims
Krinos Foods LLC is one of the largest importers and manufacturers of specialty foods in North America. Krinos imports over 3,000 frozen, refrigerated and dry food products from over 25 countries. These products include cheeses, olives, olive oils, pasta and etc.
Sources
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

