Ransomware victim disclosure
← All victimsHIGUCHI USA, INC
Claimed by Stormous · listed 5 days ago
Status timeline
- ListedJun 28, 2026
- Data leakeddate unknown
At a glance
- Group
- Stormous
- Status
- Data leaked
- Country
- United States
- Sector
- Manufacturing
- Listed on leak site
- Jun 28, 2026
About the victim
AI dossier — public-source company profileHIGUCHI USA, INC is a manufacturing company with operations across Dallas, Hong Kong, and Los Angeles, engaged in domestic and international inventory and trade operations.
- Industry
- Manufacturing
Attack summary
Severity: high — Confirmed exfiltration of comprehensive financial records, accounting systems, and operational data representing significant business intelligence. Scale and sensitivity of financial/accounting data exposure warrants high severity.Stormous claims to have exfiltrated comprehensive financial statements, accounting database backups (Sage 50), and corporate inventory/trade data. Both encryption and data theft appear to have occurred.
Data the group says was taken
AI dossier — extracted from the leak post- Balance sheets
- Asset records
- Liabilities and capital records
- Accounts receivable database
- Accounts payable database
- Sage 50 accounting backups
- Inventory tracking data
- Trade records
- Business operations data
What the group claims
(Dallas - HongKong - LosAngeles ) Comprehensive financial statements including Balance Sheets, Asset records, Liabilities, Capital, Accounts Receivable (A/R), and Accounts Payable (A/P) database backups from Sage 50 (formerly Peachtree Accounting software), indicated by the .ptb file extension Corporate data detailing domestic and international inventory tracking, trade checking, and business operations.
Source
Indexed 5 days agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

