Ransomware victim disclosure
← All victimsAtwood Industries, Inc.
listed as atwoodindustries.com · Claimed by Toufan · listed 3 years ago
Status timeline
- ListedDec 19, 2023
- Data leakeddate unknown
At a glance
- Group
- Toufan
- Status
- Data leaked
- Country
- United States
- Sector
- Manufacturing
- Listed on leak site
- Dec 19, 2023
About the victim
AI dossier — public-source company profileAtwood Industries, Inc. is an industrial distributor based in Cleveland, Ohio, supplying a broad range of cutting tools, machining supplies, and MRO (maintenance, repair, and operations) products including turning, milling, holemaking, abrasives, fasteners, and related tooling systems. The company operates an e-commerce catalog platform and offers additional services such as custom engineered tooling, tooling repair/regrind, and vendor managed inventory. It serves industrial and manufacturing customers primarily in the United States.
- Industry
- Industrial Cutting Tools & MRO Distribution
- Address
- 1315 Main Ave., Cleveland, Ohio 44113
Attack summary
Severity: medium — The disclosure status is 'data_published', suggesting exfiltration and public release of data, but no leak post content, data inventory, or proof count was captured, and no regulated or sensitive data categories are confirmed. This warrants a medium severity pending further evidence.The Toufan ransomware group has listed Atwood Industries, Inc. under a 'data_published' status, indicating the group claims to have exfiltrated and published data from the company. No specific details about the nature or volume of the data are available from the captured leak post.
Sources
- Victim siteatwoodindustries.com
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

