Ransomware Group: NITROGEN

VICTIM NAME: Palm Bay International

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the NITROGEN Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page pertains to Palm Bay International, a major distributor of wines and spirits in the United States. The attack was publicly disclosed on July 23, 2025, indicating a recent compromise. The company’s description highlights its prominent role in the beverage import industry, serving a significant market segment. The leak page includes a screenshot that depicts visual evidence linked to the breach, though specific contents are not detailed here.

The breach appears to be associated with a group named “nitrogen,” which is likely responsible for deploying the ransomware or managing the leaked data. The disclosure does not specify the type of data compromised, but the presence of a screenshot suggests that internal information or documents may have been accessed or leaked. Notably, there are no indications of additional sensitive or personal information made public, and the attack date is recorded as July 23, 2025. The leak may include data that could impact the company’s operations or reputation, but specific contents are not provided in detail.

Additional technical details about the attack, such as the specific data stolen or exploited vulnerabilities, are not included. The leak page features a claim URL hosted via an onion domain, reflecting the use of Tor for anonymity. The overall profile indicates a targeted attack against a major importer and distributor within the US, emphasizing the ongoing threat landscape facing organizations in the supply chain and distribution sectors.