Ransomware victim disclosure
← All victimsonyx-fire.com
Claimed by Ransomblog_Noname · listed 2 years ago
Status timeline
- ListedJan 16, 2024
- Data leakeddate unknown
At a glance
- Group
- Ransomblog_Noname
- Status
- Data leaked
- Country
- United States
- Sector
- Business Services
- Listed on leak site
- Jan 16, 2024
- Data size
- 800 GB
About the victim
AI dossier — public-source company profileOnyx-Fire Protection Services Inc. is a national fire safety and security company operating across twelve branches with approximately 900 employees. They provide comprehensive fire alarm systems, sprinkler installation and maintenance, security systems, and life safety solutions to commercial, industrial, and institutional clients nationwide, serving over 30,000 properties annually.
- Industry
- Fire Safety Equipment & Security Services
- Employees
- 900
Attack summary
Severity: critical — Confirmed exfiltration of regulated PII at scale (employee SIN numbers, addresses, DOB, salaries affecting ~900 employees) combined with sensitive financial data. SIN numbers trigger PIPEDA regulatory obligations in Canada; financial exposure creates operational and reputational risk.The Noname ransomware group claims to have exfiltrated 800 GB of data from Onyx-Fire, including comprehensive financial documents (balance sheets, budgets, P&L reports, bank statements, tax forms, audits) and employee personal information (SIN numbers, residential addresses, dates of birth, salaries).
Data the group says was taken
AI dossier — extracted from the leak post- Financial documents (balance sheets, P&L reports, budgets)
- Bank statements and cash flow records
- Tax forms and audit reports
- Expense and payable/receivable statements
- Employee SIN numbers
- Employee residential addresses
- Employee dates of birth
- Employee salary information
What the group claims
Onyx-Fire Protection Services Inc is a company that operates in the Security and Investigations industry 800 GB Financial documents (balance sheets, budget, PL reports, expense reports, bank statements, statements of payables and receivables, various tax forms and reports, audits, cashflow, and many other important financial documents) Employees (sin numbers, residential addresses, date of birth, salary, […]
Sources
- Victim siteonyx-fire.com
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

