Ransomware victim disclosure
← All victimsMosley Glick O’Brien, Inc.
Claimed by BianLian · listed 1 year ago
Status timeline
- ListedMar 4, 2025
- Data leakeddate unknown
At a glance
- Group
- BianLian
- Status
- Data leaked
- Country
- United States
- Listed on leak site
- Mar 4, 2025
About the victim
AI dossier — public-source company profileMosley Glick O'Brien, Inc. is a certified public accounting firm based in Toledo, Ohio, serving small- to medium-sized businesses across the United States. They provide accounting, tax, and management consulting services to clients in construction, manufacturing, transportation, professional services, logistics, non-profits, and individuals.
- Industry
- Accounting & Tax Services
- Address
- Toledo, Ohio, United States
Attack summary
Severity: high — Confirmed data publication by ransomware group targeting a CPA firm with access to client financial, tax, and business records across multiple industry verticals. Client data at scale represents significant business and personal financial information exposure.BianLian claims to have conducted an attack on Mosley Glick O'Brien, Inc. and published data. The specific nature of the exfiltration (data type, volume) and operational impact are not detailed in the available post excerpt.
Data the group says was taken
AI dossier — extracted from the leak post- Client financial records
- Tax documentation
- Business financial data
- Client information
What the group claims
Mosley Glick O'Brien Inc is a top, certified public accounting firm based in Toledo, Ohio, with clients across the country.They work with established businesses, start-ups, non-profits and individuals, among others while serving a variety of industry verticals including construction, manufacturing, transportation, professional services and logistics.
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

