Ransomware victim disclosure
← All victimsHawai'i Unified
listed as hawaiiunified.com · Claimed by Embargo · listed 1 year ago
Status timeline
- ListedJun 24, 2025
- Data leakeddate unknown
At a glance
- Group
- Embargo
- Status
- Data leaked
- Country
- United States
- Sector
- Telecommunication
- Listed on leak site
- Jun 24, 2025
- Data size
- 65 GB
About the victim
AI dossier — public-source company profileHawai'i Unified is a Hawaii-based licensed general contractor offering facility maintenance, renewable energy (solar and battery storage) project development, and specialized trades services (electrical, plumbing, HVAC, doors). The company employs over 100 local field staff and serves retail, commercial, industrial, and utility-scale clients.
- Industry
- Construction, Facility Maintenance & Renewable Energy Services
- Employees
- 100+
Attack summary
Severity: high — Confirmed exfiltration of 65 GB of corporate data from a contractor firm with 100+ employees; likely contains PII (employee and client data), financial records, and sensitive project information. Data has been published by the threat actor.The Embargo ransomware group claims to have exfiltrated 65 GB of data from Hawai'i Unified. The group has published the data without stating specific encryption or operational disruption.
Data the group says was taken
AI dossier — extracted from the leak post- Business records
- Client information
- Employee data
- Project documentation
- Financial records
What the group claims
HAWAI'I UNIFIED is a licensed General Contractor, Electrical Contractor, Plumbing Contractor, Steel Door Contractor, and Fencing Contractor providing services t... - We hacked Hawai'i Unified. Today, we disclose 65 GB of data.
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

