Ransomware victim disclosure
← All victimsReading Elevator Service
Claimed by Sinobi · listed 7 months ago
Status timeline
- ListedDec 2, 2025
- Data leakeddate unknown
At a glance
- Group
- Sinobi
- Status
- Data leaked
- Country
- United States
- Sector
- Construction
- Listed on leak site
- Dec 2, 2025
About the victim
AI dossier — public-source company profileReading Elevator Service (RES) is an elevator company established in 1969, specializing in the installation, maintenance, and modernization of non-proprietary elevator systems. The company serves both residential and commercial properties across Eastern Pennsylvania and is fully bonded and insured. RES holds affiliations with IUEC, NAEC, NFIB, and the Chamber of Commerce.
- Industry
- Elevator Installation & Maintenance Services
- Address
- Eastern Pennsylvania, United States
- Founded
- 1969
Attack summary
Severity: medium — Data has been published (disclosed status: data_published) indicating confirmed exfiltration, but no details on the nature, volume, or sensitivity of the data are provided, and no regulated/sensitive data categories (PII at scale, medical, financial) are explicitly identified.The ransomware group Sinobi has disclosed data related to Reading Elevator Service under a 'data_published' status, indicating exfiltration and publication of company data. No specific ransom amount or data size was stated in the post.
What the group claims
Reading Elevator Service (RES) is a reputable elevator company established in 1969, specializing in the installation, maintenance, and modernization of non-proprietary elevator systems. The company is dedicated to delivering excellent customer service, ensuring safety and efficient traffic flow in both residential and commercial properties across Eastern Pennsylvania. RES is fully bonded and insured, with affiliations including IUEC, NAEC, NFIB, and the Chamber of Commerce. They provide a range of services aimed at meeting the unique needs of their clients while allowing flexibility in choosing service providers.
Sources
Source
Indexed 7 months agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

