Ransomware victim disclosure
← All victimsVinda Group
Claimed by Ransomhouse · listed 1 year ago
Status timeline
- ListedJun 2, 2025
- Data leakeddate unknown
At a glance
- Group
- Ransomhouse
- Status
- Data leaked
- Country
- Hong Kong SAR China
- Sector
- Manufacturing
- Listed on leak site
- Jun 2, 2025
- Data size
- 743 GB
- Ransom demanded
- $740
About the victim
AI dossier — public-source company profileVinda Group is a manufacturing company based in Hong Kong. Limited public information is available from the provided sources.
- Industry
- Manufacturing
Attack summary
Severity: medium — Large data volume (743 GB) exfiltrated and disclosed; however, no specific sensitive data categories (PII, financial records, trade secrets) are explicitly detailed in the leak post. Manufacturing sector data exposure is significant but not critical infrastructure.Ransomhouse claims to have encrypted Vinda Group's systems and exfiltrated approximately 743 GB of data. The group has published the victim listing on their leak site.
Data the group says was taken
AI dossier — extracted from the leak post- company files
- databases
- operational data
What the group claims
Vinda Group is a large-scale sanitary products company in Asia. Founded in 1985, the group has been adhering to the life philosophy of a healthy life starts with Vinda for many years, and is dedicated to providing every consumer and customer with high-quality health care products and services. Major brands such as Dr.P, Libresse, Libero, Drypers, etc. develop a variety of businesses in household paper, incontinence care, feminine care, baby care, and home and outdoor hygiene solutions
The leak post
captured from the group's site```
{"data":[{"id":"a1894b76b7004c75a3a0845799af49956592e3d9","display":"animated","header":"HOT NEWS","info":" Trellix is a global cybersecurity company.","url":"","sort":1,"views":"436242"},{"id":"336b257f582b17573c97578efd4b22762bf77344","sort":2,"header":"Trellix (McAfee & FireEye)","url":"https://www.trellix.com/","private":"false","revenue":"1.5-2 B$","employees":"5000","info":"Trellix is a global cybersecurity company formed from the October 2021 merger of McAfee Enterprise and FireEye. It provides services to over 50,000 business and government customers worldwide, protecting more than 200 million endpoints. The companys open and native extended detection and response (XDR) platform helps organizations confronted by todays most advanced threats gain confidence in the protection and resilience of their operations. Trellix, along with an extensive partner ecosystem, accelerates technology innovation through machine learning and automation to empower over 40,000 business and government customers with living security","statusDate":"DEPENDS ON YOU","status":"EVIDENCE","published":"NOT YET","action":"Encrypted","actionDate":"17/04/2026","volume":"~","content":"cybersecurity.html"…Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

