Ransomware Group: EVEREST

VICTIM NAME: Fishman, Larsen & Callister – Full leak published

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the EVEREST Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak pertains to a victim named “Fishman, Larsen & Callister,” with the full leak publicly available online. The attack was discovered on July 12, 2025, just one day after the reported attack date of July 11, 2025. The affected entity appears to be a professional service provider, although specific industry details are not provided. The leak includes a screenshot illustrating the compromised data, which may contain internal documents or sensitive information, heightened by a visual representation that suggests data exposure. The leak venture is associated with the group “everest,” indicating a possible attribution to a known threat actor. The leak page prominently features a claim URL leading to a dark web site, where data and further information are accessible, suggesting that a comprehensive data dump has been published. No detailed content or data specifics are disclosed here, but the public listing indicates a significant breach affecting the victim. The attack date is in mid-2025, indicating a recent compromise, and the threat actor has made the data accessible through organized leak channels. Additionally, links to download or view the leaked data are available via the claim URL.

The webpage includes a screenshot of internal documents or presentation slides, which may contain confidential or proprietary information. The leak provides an overview of the compromised data, which could potentially include sensitive corporate or personal information, although explicit details are not described. The incident underscores the importance of cybersecurity measures for organizations, especially those identified in the context of this breach. The reportage does not specify the exact nature of the compromised data, but the publication of a full leak signifies a serious breach with potential repercussions. The leak’s public visibility and the presence of downloadable content highlight the ongoing threat posed by ransomware groups who target various industries worldwide, including in the United States, as indicated by the country data.