Ransomware victim disclosure
← All victimsNippon Corporation
listed as Nippn TH · Claimed by Lynx · listed 1 year ago
Status timeline
- ListedJul 22, 2025
- Data leakeddate unknown
At a glance
About the victim
AI dossier — public-source company profileNippn is a diversified food company founded in 1896 with core operations in flour milling and expansion into food ingredients, processed foods, frozen foods, ready-made meals, healthcare products, natural cosmetics, pet food, and biotechnology. The company serves business and consumer markets across Asia.
- Industry
- Diversified Food Manufacturing & Processing
- Founded
- 1896
Attack summary
Severity: medium — Data published status indicates exfiltration occurred, but without visibility into proof file count, data sensitivity specifics, or operational disruption claims, severity cannot be elevated. Diversified food company with Asia-wide operations suggests moderate business data exposure.The Lynx group claims to have compromised Nippn and published data. The specific nature of exfiltrated data, encryption status, and operational impact are not detailed in the available leak post excerpt.
Data the group says was taken
AI dossier — extracted from the leak post- business records
- operational data
What the group claims
Nippn, founded in 1896, is a diversified food company with core operations in flour milling. The company has expanded into multiple food sectors including food ingredients, processed foods, frozen foods, and ready-made meals. Nippn manufactures a wide range of products such as premixes, pasta, groceries, frozen dough, box lunches, and deli foods. Beyond its food businesses, Nippn has diversified into healthcare products, natural cosmetics, pet food, and biotechnology. The company serves both business and consumer markets across Asia with a corporate philosophy centered on customer trust and providing quality products that contribute to society.
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

