Ransomware Group: REBORNVC

VICTIM NAME: snapav[.]com / resideo[.]com

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the REBORNVC Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak reveals that the victim, associated with the domains snapav.com and resideo.com, is a company involved in the technology sector based in the United States. The incident was publicly disclosed on July 8, 2025, and the attackers claim to have accessed a substantial amount of sensitive data. This includes proprietary documents, confidential testing results, technical drawings, surveillance information, private communications, and other proprietary files. The group behind the attack has announced that the entire set of compromised data is available for sale, emphasizing the breach’s extensive scope. The attackers demand a ransom of $1,000,000 to prevent further dissemination or damaging exposure of the stolen information.

The page indicates the attackers have attempted to reach the victim multiple times to keep the incident private, but these efforts were ignored. As a result, the threat actors have chosen to publicly disclose the breach to damage the organization’s reputation. Visual content such as screenshots or images are not provided in the leak page, but the content suggests the attackers possess and are willing to sell critical internal data. This breach poses significant risks, including potential regulatory fines from the Federal Trade Commission for inadequate data security. The attack highlights the importance of cybersecurity vigilance in protecting sensitive business information from malicious actors.