Ransomware Group: QILIN

VICTIM NAME: FLOE International

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the QILIN Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page reports a security incident involving FLOE International, a manufacturing company based in the United States. The attack was identified on June 2, 2025, and the information was publicly disclosed on June 3, 2025. The victim specializes in producing aluminum docks, boat lifts, trailers, and related accessories, serving customers in the recreational and marine industries. The leak indicates that sensitive data related to the company’s operations has been compromised and is being made available on the dark web. The page includes a screenshot of what appears to be internal documents or related graphics, emphasizing the severity of the breach. Download links or data sets may also be present, highlighting the potential exposure of proprietary information. The leak is associated with a hacking group known as ‘qilin’, which has targeted the company and published their data on the dark web platform.

The leak document and associated image suggest that the breach could involve confidential company data, potentially impacting proprietary processes or customer information. The disclosure of this material poses risks to the company’s reputation and operations, requiring prompt cybersecurity and managerial responses. The leak traces back to a compromised entry point identified on the dark web, with indicators pointing to the ongoing threat of data exploitation. No personally identifiable information of customers or employees was explicitly mentioned in the publicly released data. The incident represents a serious cybersecurity event in the manufacturing sector and underscores the importance of strengthening security measures to prevent future attacks.