Ransomware victim disclosure
← All victimsFamily Farm and Home
Claimed by Worldleaks · listed 8 months ago
Status timeline
- ListedNov 28, 2025
- Data leakeddate unknown
At a glance
- Group
- Worldleaks
- Status
- Data leaked
- Country
- United States
- Listed on leak site
- Nov 28, 2025
About the victim
AI dossier — public-source company profileFamily Farm and Home is a retail chain founded in 1959 in Michigan that specializes in agricultural supplies, home improvement products, tools, pet supplies, clothing, footwear, and farm equipment. The company operates multiple store locations across several U.S. states, primarily serving rural and suburban communities. It positions itself as a one-stop shop tailored to the needs of farming and rural households.
- Industry
- Rural Retail & Farm Supply
- Employees
- 501-1000
- Founded
- 1959
Attack summary
Severity: medium — Data is listed as published by the threat actor, indicating confirmed exfiltration rather than a mere listing; however, the post provides no detail on the volume or sensitivity of the data, no ransom amount, and no specific data types (e.g., financial, medical, PII at scale) are confirmed, limiting severity to medium.The group worldleaks claims to have published data belonging to Family Farm and Home, with the disclosure status listed as data_published. The specific nature of the exfiltrated data and whether encryption occurred are not detailed in the post.
Data the group says was taken
AI dossier — extracted from the leak post- Customer records
- Employee data
- Business operational data
Original description
AI-summarised, not from the leak postFamily Farm and Home is a retail chain specializing in agricultural and home improvement products. Founded in 1959 as a single store in Michigan, it now operates across multiple states. They provide a wide variety of products such as tools, pet supplies, clothing, footwear, and farm equipment. The company aims to meet the needs of rural and suburban communities, offering a tailored selection that fits their specific requirements.
Sources
Source
Indexed 8 months agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

