Ransomware victim disclosure
← All victimsL.A. Lucky Import Export, Inc.
listed as LA LUCKY Brand · Claimed by Blacklock · listed 1 year ago
Status timeline
- ListedMay 16, 2025
- Data leakeddate unknown
At a glance
- Group
- Blacklock
- Status
- Data leaked
- Country
- United States
- Listed on leak site
- May 16, 2025
- Records
- 25 Employees
- Ransom demanded
- $5M
About the victim
AI dossier — public-source company profileL.A. Lucky Import Export, Inc. is a California-based Asian foods wholesaler established over 28 years ago (circa 1995) by George Nguyen, a third-generation Asian foods entrepreneur. The company supplies Asian retailers with a complete variety of food products and operates as a top wholesaler in the United States with fewer than 25 employees.
- Industry
- Grocery Wholesale & Asian Food Distribution
- Employees
- <25
- Founded
- 1995
Attack summary
Severity: medium — Confirmed data exfiltration from a small wholesale business with operational/financial data at stake; no indication of regulated PII or critical infrastructure impact, but publication of data represents moderate business harm.BlackLock claims to have compromised L.A. Lucky Import Export and exfiltrated business data. The group is demanding a $5M ransom and has published data as proof of the breach.
Data the group says was taken
AI dossier — extracted from the leak post- Business records
- Customer/retailer information
- Supply chain data
- Financial records
What the group claims
Grocery Retail · California, United States LA Lucky has been in business for over 28 years. In 2007, George Nguyen, a third generation of Asian foods entrepreneur, purchased LA Lucky with the idea of providing Asian retailers with a complete variety of food. < 25 Employees Revenue < $5 Million
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

