Ransomware victim disclosure
← All victimsHeartland Growers
Claimed by Dragonforce · listed 2 months ago
Status timeline
- ListedMay 24, 2026
- Data leakeddate unknown
At a glance
- Group
- Dragonforce
- Status
- Data leaked
- Country
- United States
- Listed on leak site
- May 24, 2026
About the victim
AI dossier — public-source company profileHeartland Growers is a full-service wholesale greenhouse in Westfield, Indiana, owned and operated by the Gapinski Family since 1984. The company operates a modern, capital-intensive facility covering over 30 acres and supplies wholesale plants (bedding plants, geraniums, lilies, hanging baskets, mums, poinsettias) to independent garden centers, florists, landscapers, and national chain stores throughout the Midwest.
- Industry
- Wholesale Greenhouse & Nursery
- Address
- 2621 E 186th St. Westfield, IN 46074
- Founded
- 1984
Attack summary
Severity: low — No proof files, screenshots, or detailed data inventory published; no operational impact stated; no confirmation of data exfiltration or encryption; listing only.The dragonforce group claims to have attacked Heartland Growers. The leak post provides no details of the attack method (encryption vs. exfiltration), specific data targeted, or proof of compromise.
What the group claims
Heartland Growers is a full-service wholesale greenhouse located in Westfield, Indiana, owned and operated by the Gapinski Family since 1984. The company supplies wholesale plants to independent garden centers, florists, landscapers, and national chain stores throughout the Midwest. With a modern and capital-intensive facility covering over 30 acres, Heartland Growers produces a variety of plants including bedding plants, geraniums, lilies, and hanging baskets. The company is committed to maintaining quality and service as top priorities for its customers
Sources
Source
Indexed 2 months agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

