Ransomware victim disclosure
← All victimsCaesarstone Singapore (Partners Portal)
listed as cspartners.caesarstone.sg · Claimed by Toufan · listed 3 years ago
Status timeline
- ListedDec 19, 2023
- Data leakeddate unknown
At a glance
- Group
- Toufan
- Status
- Data leaked
- Country
- Singapore
- Sector
- Manufacturing
- Listed on leak site
- Dec 19, 2023
About the victim
AI dossier — public-source company profilecspartners.caesarstone.sg appears to be the Singapore partner/dealer portal for Caesarstone, an Israeli-founded manufacturer of engineered quartz surfaces used in kitchen countertops, bathroom vanities, and other interior applications. Caesarstone operates globally with a significant presence across Asia-Pacific including Singapore. The subdomain suggests a B2B-facing platform serving trade partners and distributors in the Singapore market.
- Industry
- Building Materials & Surface Products Manufacturing
Attack summary
Severity: medium — Data is listed as published, indicating confirmed exfiltration, but no leak post details, data size, or specific data categories are available to confirm regulated or sensitive data at scale. The target appears to be a partner portal which may contain B2B business data rather than large-scale consumer PII, limiting severity to medium without further evidence.The Toufan ransomware group claims to have attacked the Caesarstone Singapore partners portal with a disclosed status of 'data_published', indicating data has been exfiltrated and released. No ransom amount or specific data size was stated in the available post.
Sources
- Victim sitecspartners.caesarstone.sg/
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

