Ransomware Group: WORLDLEAKS

VICTIM NAME: Sylvania

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the WORLDLEAKS Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page details a security incident involving Sylvania, a well-known manufacturer specializing in lighting systems and related products. The attack was identified on May 27, 2025, at approximately 03:31 UTC. The breach was discovered shortly thereafter, at 03:47 UTC on the same day. This incident impacts the company’s operations in the United States, where Sylvania is headquartered. The leak includes a screenshot of alleged internal information, which may suggest data exfiltration or compromised systems. The company is part of a global enterprise owned by LEDVANCE, a subsidiary of the Chinese firm MLS Co. LTD. The leak site provides a claim link, but specific details about the data compromised or the extent of the leak are not publicly disclosed. The leak’s nature might include stolen information or sensitive corporate data, though no explicit contents are available in the overview.

The provided screenshot indicates that the ransomware operators have access to some form of internal or operational data, possibly including technical documents, administrative information, or other proprietary content. This breach could potentially disrupt the company’s manufacturing activities or compromise customer data, depending on the scope of the attack. Sylvania operates in the manufacturing sector, specializing in lighting and electrical products, and the attack could threaten supply chain integrity or intellectual property. The incident exemplifies the ongoing cybersecurity risks faced by manufacturing firms, especially those with extensive global operations. Authorities or affected parties are advised to monitor for further disclosures or updates from the affected company or cybersecurity agencies.