Ransomware Group: QILIN

VICTIM NAME: accesssmt[.]com

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the QILIN Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page indicates that the victim is a company identified by the domain accesssmt.com, which operates within the technology sector. The attack was publicly disclosed on April 17, 2025, suggesting a recent compromise. Targeting a business founded in 1964, the organization specializes in supplying and installing hardware, doors, frames, and building materials for commercial and residential sectors, with its operations based in Canada, though its website is registered in the United States. The leak includes a screenshot of the company’s internal information or documents, hinting at data exfiltration or internal access. The presence of a claim URL on the dark web indicates that the attackers have claimed responsibility and are offering a means to verify the leak or negotiate, although specific data details or download links are not displayed in the summary.

The leakage appears linked to the threat group Qilin, known for targeting organizations within various industries. The attack timestamp, recorded shortly after the discovery date, confirms the incident’s recent occurrence. No personally identifiable information or sensitive internal details are openly disclosed in this summary, but the inclusion of screenshots suggests that data leaks include visual evidence of compromised company files or infrastructure. The incident underscores ongoing risks faced by organizations in the technology and construction supply sectors, emphasizing the importance of proactive cybersecurity measures. The leak’s details are publicly accessible via the provided dark web link, but explicit data or download options are not included in this reporting summary.