Ransomware victim disclosure
← All victimsGoldstar Pens
listed as GOLDSTARPENS.COM · Claimed by Clop · listed 8 months ago
Status timeline
- ListedNov 21, 2025
- Data leakeddate unknown
At a glance
- Group
- Clop
- Status
- Data leaked
- Country
- United States
- Sector
- Business Services
- Listed on leak site
- Nov 21, 2025
About the victim
AI dossier — public-source company profileGoldstar Pens is a manufacturer and supplier of customizable writing instruments and promotional products including pens, flashlights, tech accessories, drinkware, and bags. They serve a global customer base of organizations seeking branded merchandise and utilize printing technology for customization.
- Industry
- Promotional Products & Customizable Writing Instruments
Attack summary
Severity: low — No proof files or screenshots are advertised, no specific data categories are disclosed, and no operational disruption is claimed. This appears to be a listing announcement only.The Clop group claims to have exfiltrated data from Goldstar Pens. Specific details about what data was taken or operational impact are not provided in the leak post.
Original description
AI-summarised, not from the leak postGoldstarPens.com is a manufacturer and supplier of customizable writing instruments and promotional products. Beyond pens, they offer a range of items like flashlights, tech accessories, drinkware, bags, and more. They utilize state-of-the-art printing technology for customization, serving as a resource for businesses looking to enhance brand recognition. With a global reputation for quality and affordability, Goldstar Pens is a trusted partner for organizations worldwide.
Sources
Source
Indexed 8 months agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

