Ransomware Group: SINOBI

VICTIM NAME: Mutual Screw & Supply

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the SINOBI Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

Mutual Screw & Supply, a United States-based manufacturing distributor specializing in industrial fasteners and related accessories, is identified as the victim on the leak page. The post is associated with the group Sinobi and is dated August 9, 2025. The page frames the incident as an encryption-based event, with the text indicating “Encrypted” alongside a numeric value (5000000) and a subsequent dollar sign and date (09/08/2025), which suggests a ransom-related claim, though an exact amount is not clearly stated in the excerpt. The leak page also reproduces a company profile describing Mutual Screw & Supply as a long-standing supplier since 1947, highlighting its role in distributing screws, nuts, bolts, washers, rivets, and safety equipment. This background description appears repeatedly within the post content, a common pattern in leak pages to emphasize the victim’s profile.

The leak page lists five image attachments that appear to be screenshots or internal documents, presented via onion-hosted links (Tor). The presence of a claim URL on the page indicates there is at least one link offered for additional data or content. The page’s text includes a line referencing encryption and a numeric figure, followed by a money symbol and a date, which aligns with ransomware leak conventions that hint at ransom demands or data impact without necessarily providing a precise amount. The post date in the metadata corresponds to August 9, 2025, which serves as the primary temporal reference for this incident.

Overall, the leak page portrays Mutual Screw & Supply as a United States–based manufacturing victim targeted by ransomware. The described impact appears to be encrypted data, with an associated numeric figure and ransom-oriented cues, and five onion-hosted images accompany the post to illustrate the claim. The onion-hosted attachments and a claim URL are consistent with standard ransomware leak communications and suggest the attackers intend to provide additional material to readers or potential buyers of the data. The post date remains August 9, 2025, establishing the event’s temporal anchor for this report.