[SINOBI] – Ransomware Victim: Core Resources Inc (CRI)

AI Generated Summary of the Ransomware Leak Page

On October 15, 2025, a leak post attributed to the Sinobi ransomware group lists Core Resources Inc (CRI) as a victim. Core Resources is described as a United States–based firm operating in real estate development, general contracting, and owner representation, offering a holistic service range from planning to financial consulting to support clients’ assets. The post presents Core Resources as the target of a ransomware-related leak, a pattern commonly observed on public-facing leak sites. The entry notes that a claim URL is present on the page. There are no visible screenshots or downloadable assets on the leak page, and the metadata indicates zero images and zero downloadable files. Because no explicit compromise date is provided, the post date—the date the leak was published—is treated as the post date.

From a risk perspective, the leak entry provides limited public detail about the attack itself. The description confirms the victim’s industry in construction-related fields, but the data does not specify whether the incident involved encryption or a data leak, nor does it disclose data volumes or any ransom demands. The lack of on-page visuals or downloadable content means there is no immediate evidence of what was compromised. The post date remains October 15, 2025. The combination of a claim URL and a minimal page footprint suggests the attackers intend ongoing disclosure, so responders should monitor for any future updates or corroborating postings about Core Resources Inc.