Ransomware victim disclosure
← All victimsandreyevengineering.com
Claimed by RansomHub · listed 1 year ago
Status timeline
- ListedMar 3, 2025
- Data leakeddate unknown
At a glance
About the victim
AI dossier — public-source company profileAndreyev Engineering, Inc. is a Florida-based engineering firm founded in 1993 by Nicolas E. Andreyev, P.E. The company provides geotechnical engineering, environmental engineering, hydrogeological services, construction materials testing, and groundwater modeling. With over 30 years of experience, they serve government agencies, developers, architects, and contractors across Central Florida from multiple office locations.
- Industry
- Geotechnical & Environmental Engineering Services
- Address
- Sanford, Florida (corporate headquarters); branch offices in Clermont, Saint Petersburg, and Oxford, Florida
- Founded
- 1993
Attack summary
Severity: high — Confirmed data exfiltration by ransomware group (published status) affecting an engineering services firm with sensitive client projects, regulatory submissions, and potential government/infrastructure-related work. However, specific data sensitivity level and proof count are not stated.RansomHub claims to have attacked Andreyev Engineering and published exfiltrated data. The group has disclosed the attack via their leak site with data_published status, though specific details about what data was exfiltrated are not provided in the post excerpt.
Data the group says was taken
AI dossier — extracted from the leak post- Company records
- Client information
- Project data
- Engineering plans/documents
Original description
AI-summarised, not from the leak postAndreyev Engineering, Inc. is a specialized engineering company based in St. Petersburg, Florida. They provide Geotechnical Engineering, Environmental Engineering, Construction Materials Testing, and Geophysical services. Their clients include government agencies, developers, architects, contractors, and property owners. With over 25 years of experience, they are known for professionalism and high-quality services.
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

