Ransomware Group: AKIRA

VICTIM NAME: RAVEN Mechanical

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the AKIRA Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

RAVEN Mechanical is identified as the victim in the leak post. The US-based, family-owned and operated commercial specialty construction firm focuses on plumbing, HVAC, utility, and specialty piping projects. The leak page states that RAVEN Mechanical will upload company data soon and enumerates the data categories that could be exposed, including financial data (audits, payment details, financial reports, invoices) and employees’ and customers’ personal information (passports, driver’s licenses, Social Security numbers, birth certificates), along with NDAs and other confidential documents. The post frames this as a data-leak event, implying data exfiltration rather than an encryption of systems.

Key date and scope: The leak post is dated August 20, 2025, which should be treated as the post date since no compromise date is publicly provided. The post identifies the impact as a data leak, with the attackers indicating an intention to expose sensitive corporate information and personal data. There is no ransom amount specified on the page.

Evidence and presentation: The page shows no attached images or downloadable files (images_count 0; downloads_present false). However, a claim URL is indicated as present on the page to support the post’s claims, though no sample data or specific files are shown in the excerpt. The described data categories include financial documents and personal identifiers, which, if released, could have significant privacy and business implications for RAVEN Mechanical.