Ransomware victim disclosure
← All victimsResideo Technologies, Inc. / Snap AV
listed as snapav.com / resideo.com · Claimed by Rebornvc · listed 1 year ago
Status timeline
- ListedJul 8, 2025
- Data leakeddate unknown
At a glance
- Group
- Rebornvc
- Status
- Data leaked
- Country
- United States
- Sector
- Technology
- Listed on leak site
- Jul 8, 2025
About the victim
AI dossier — public-source company profileResideo is a leading provider of smart home and security solutions, operating the Snap AV brand which sells professional-grade home automation, networking, and security products to integrators and consumers. The company serves residential and commercial markets with IoT and connected home technologies.
- Industry
- Smart Home Technology & Security Systems
- Employees
- 6000-10000
- Founded
- 2018
Attack summary
Severity: high — Confirmed exfiltration of significant proprietary business data including technical drawings, test data, and confidential communications; targets a major smart home/IoT provider whose data exposure could affect downstream customers and partners; FTC regulatory risk explicitly cited by attacker.The rebornvc group claims to have exfiltrated proprietary documents, confidential test data, technical drawings, surveillance schemes, private communications, and other sensitive business records. The group states they attempted to extort the company privately before publishing the breach.
Data the group says was taken
AI dossier — extracted from the leak post- proprietary documents
- confidential test data
- technical drawings
- surveillance system information
- private communications
- partner data
What the group claims
Snap AV / Resideo has suffered a major data breach. Despite multiple attempts to contact them to keep the incident private, they have chosen to ignore us. They are now free to pay the price with their own reputation. You are risking big fines from the Federal Trade Commission by not securing your data and that of your partners. We have all your proprietary and confidential documents, private tests of your programs, your drawings and surveillance schemes, private communications and much more. The whole set of documents is for sale!
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

