Ransomware Group: LYNX

VICTIM NAME: buildingmaterialspecialties[.]com

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the LYNX Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page pertains to Building Material Specialties, a company located in the United States operating within the construction industry. The attack was publicly disclosed on April 24, 2025, with the incident date also recorded around the same time. The compromised entity maintains a substantial inventory of building materials, emphasizing quick delivery and quality products sourced from responsible vendors. The company’s profile highlights over 25 years of industry experience, certifications from the Forest Stewardship Council (FSC), and a commitment to environmental sustainability. The leak page features a screenshot of the company’s website, providing visual evidence of the affected organization. No sensitive personnel or client information appears to have been disclosed in the leak.

The leak suggests that the threat group behind the attack has exfiltrated data related to the company’s operations, potentially including inventories, supplier information, or internal communications. While no explicit download links are provided, the presence of the leak indicates a breach that might impact the company’s reputation and operational security. The attack’s timing and the leak’s nature imply significant implications for the company’s supply chain and customer trust. There is no indication of further malicious activity beyond data exfiltration or ransom demands at this stage. Overall, the leak underlines the importance of cybersecurity measures within the construction sector, especially for companies handling valuable inventory and sensitive operational data.