Ransomware Group: QILIN

VICTIM NAME: Windsor Door

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the QILIN Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page pertains to Windsor Door, Inc., a manufacturing company established in 1976 and based in Little Rock, Arkansas, United States. The attack was publicly disclosed on July 22, 2025, with the attack date recorded as July 21, 2025. The company specializes in manufacturing garage door solutions for both residential and commercial sectors, making it a notable target within the manufacturing industry. The leak includes a screenshot of internal documents, indicating that sensitive data may have been compromised. The page also provides a link to a dedicated, onion-based claim URL where further details about the breach can be accessed. The incident appears linked to the Qilin group, a known threat actor, emphasizing the seriousness of the breach.

While specific details about the leaked data are not disclosed, the presence of a scan of internal documents suggests that proprietary information or operational data may have been exposed. The content does not include PII or sensitive personnel information, but it indicates a significant breach impacting the company’s technological and operational infrastructure. Additional information reveals that the threat actors did not claim to have stolen employee data or third-party information, although the leak’s scope might include critical business data related to manufacturing processes. No explicit mentions of ransom demands or negotiations are included, but the active leak site and screenshot point to ongoing malicious activity targeting Windsor Door, Inc.