Ransomware victim disclosure
← All victimsToolKrib
listed as catalog.toolkrib.com · Claimed by Toufan · listed 3 years ago
Status timeline
- ListedDec 19, 2023
- Data leakeddate unknown
At a glance
- Group
- Toufan
- Status
- Data leaked
- Country
- United States
- Sector
- Manufacturing
- Listed on leak site
- Dec 19, 2023
About the victim
AI dossier — public-source company profileToolKrib operates an online product catalog accessible at catalog.toolkrib.com, apparently focused on tools and hardware products based on the domain name. The company appears to be a US-based retailer or distributor of tools and related equipment. No further details are available from the public site excerpt or leak post.
- Industry
- Tool & Hardware Catalog / Retail
Attack summary
Severity: medium — Data is marked as published, indicating at least partial exfiltration has occurred, but no details on the volume, sensitivity of data, or proof files are available to escalate to high or critical.The Toufan ransomware group has listed catalog.toolkrib.com as a victim with a disclosed status of data_published, suggesting data exfiltration has occurred. No further details on the nature of the attack, encrypted systems, or specific data stolen are available from the captured post.
Sources
- Victim sitecatalog.toolkrib.com
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

