Ransomware victim disclosure
← All victimsSink Direct
listed as www.sinkdirect.com · Claimed by RansomHub · listed 1 year ago
Status timeline
- ListedMar 21, 2025
- Data leakeddate unknown
At a glance
- Group
- RansomHub
- Status
- Data leaked
- Country
- United States
- Sector
- Consumer Services
- Listed on leak site
- Mar 21, 2025
About the victim
AI dossier — public-source company profileSink Direct is a United States-based online and physical retail company specializing in kitchen and bathroom sinks, faucets, and related plumbing accessories. They offer stainless steel, ceramic, stone, glass, copper, quartz composite, and porcelain sinks, along with installation and plumbing services. The company claims over 15,000 customers and 600,000+ items sold.
- Industry
- Retail & Plumbing Supplies (Kitchen & Bathroom Fixtures)
- Address
- 4170 JVL Industrial Park Dr, Marietta, GA 30066
Attack summary
Severity: medium — Confirmed data publication by known ransomware group with no specific proof artifacts or data inventory detailed. Consumer/retail business with likely customer PII exposure but no indication of large-scale sensitive data breach (medical, financial, government). Lack of specific proof count or detailed data inventory prevents higher classification.RansomHub claims to have compromised Sink Direct and published exfiltrated data. The specific data categories and operational impact are not detailed in the available leak post excerpt.
Data the group says was taken
AI dossier — extracted from the leak post- Customer records
- Business data
Original description
AI-summarised, not from the leak post"SinkDirect.com" is an online-based retail company in the United States specializing in kitchen and bathroom sinks. Their wide variety of products includes stainless steel sinks, ceramic sinks, stone sinks, glass sinks, and copper sinks. Additionally, they provide related sink accessories. They are committed to providing quality products at economical prices with a commitment to superior customer service.
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

