Ransomware Group: INTERLOCK

VICTIM NAME: A/C Supply

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the INTERLOCK Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page concerns A/C Supply, Inc., a prominent wholesale distributor specializing in HVAC-R products serving southern Louisiana and Mississippi. The attack was discovered on May 27, 2025, shortly after it occurred, indicating a recent cybersecurity incident. A/C Supply operates multiple branches across the two states and has a reputation for integrity and customer service. Despite their diligence, they became a victim of a ransomware attack carried out by the group “interlock.” The breach involved data theft, with the attackers accessing information related to company employees and operations. The incident highlights the importance of cybersecurity measures within the manufacturing sector, especially for companies holding sensitive operational or employee data.

The leak page features a screenshot of the compromised data, showing evidence of the attack. Detected sale of information includes data associated with the Azorult infostealer, a malware often used for credential theft, affecting one user in this incident. The attackers provided a claim URL, which points to a dark web link containing leaked data, emphasizing the seriousness of the breach. As of the published date, no specific personal identifying information has been publicly disclosed beyond operational details. The incident underscores the critical need for robust cybersecurity practices in the manufacturing and distribution industry to prevent similar attacks and protect sensitive business data.