Ransomware victim disclosure
← All victimsWillis Klein
Claimed by Projectrelic · listed 4 years ago
Status timeline
- ListedNov 11, 2022
- Data leakeddate unknown
At a glance
- Group
- Projectrelic
- Status
- Data leaked
- Country
- United States
- Sector
- Manufacturing
- Listed on leak site
- Nov 11, 2022
About the victim
AI dossier — public-source company profileWillis Klein is a US-based company founded in 1960 that operates multiple divisions supplying decorative plumbing fixtures, door hardware, custom bathroom cabinets and furniture, and commercial hardware. The company serves both residential and commercial markets. Its specific headquarters location and employee count are not publicly confirmed from available sources.
- Industry
- Decorative Plumbing & Door Hardware Distribution
- Founded
- 1960
Attack summary
Severity: medium — Data has been published (disclosed status: data_published), indicating confirmed exfiltration, but no details on the scale, sensitivity, or type of data exposed are provided in the leak post, and no regulated or sensitive data categories are explicitly mentioned.The Projectrelic ransomware group claims to have attacked Willis Klein and has published data as part of a disclosed breach. The leak post does not specify whether encryption, exfiltration, or both occurred, nor the volume of data affected.
Data the group says was taken
AI dossier — extracted from the leak post- Business records
- Internal company data
What the group claims
Founded in 1960, Willis Klein has multiple divisions providing decorative plumbing, door hardware, custom bathroom cabinets and furniture, commercial hardware.
Source
Indexed 4 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

