STI Holdings, Inc.

STI Holdings, Inc. fell victim to a ransomware attack discovered on June 9, 2023, compromising sensitive data of 4,294 individuals, including at least one Maine resident. The breach involved unauthorized access to employee records, with Social Security numbers (SSNs) potentially exposed a critical form of personally identifiable information (PII). The company notified affected consumers on December 2, 2023, nearly six months after detection, raising concerns about delayed response and potential misuse of the stolen data during that period. The attack targeted internal employee data, a high-value asset for cybercriminals due to its use in identity theft, financial fraud, or further phishing campaigns. While the exact method of infiltration remains undisclosed, ransomware typically encrypts systems and exfiltrates data before demanding payment. The exposure of SSNs amplifies risks for employees, including long-term vulnerabilities to fraud, credit damage, or targeted scams. The incident underscores the growing threat of ransomware groups exploiting corporate networks to extract sensitive workforce information, often with prolonged detection gaps exacerbating the fallout.

Source: https://www.maine.gov/agviewer/content/ag/985235c7-cb95-4be2-8792-a1252b4f8318/9add8e5d-e67b-4f44-b770-71350dc6249b.shtml

TPRM report: https://www.rankiteo.com/company/sti-corporate

"id": "sti011091825",
"linkid": "sti-corporate",
"type": "Ransomware",
"date": "5/2023",
"severity": "85",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"

{'affected_entities': [{'customers_affected': '4,294 individuals (1 in Maine)',
                        'name': 'STI Holdings, Inc.',
                        'type': 'company'}],
 'customer_advisories': 'Consumers were notified on December 2, 2023',
 'data_breach': {'number_of_records_exposed': '4,294',
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'high',
                 'type_of_data_compromised': ['Social Security numbers']},
 'date_detected': '2023-06-09',
 'date_publicly_disclosed': '2023-12-02',
 'description': 'The Maine Office of the Attorney General reported that STI '
                'Holdings, Inc. experienced a ransomware attack discovered on '
                'June 9, 2023, affecting 4,294 individuals, with 1 resident in '
                'Maine. The breach involved unauthorized access to employee '
                'data, potentially compromising Social Security numbers.',
 'impact': {'data_compromised': ['Social Security numbers'],
            'identity_theft_risk': 'high'},
 'references': [{'source': 'Maine Office of the Attorney General'}],
 'regulatory_compliance': {'regulatory_notifications': 'Maine Office of the '
                                                       'Attorney General'},
 'response': {'communication_strategy': 'Consumers were notified on December '
                                        '2, 2023'},
 'title': 'Ransomware Attack on STI Holdings, Inc.',
 'type': 'ransomware'}

STI Holdings, Inc.

Duffy’s Sports Grill: Duffy’s Sports Grill Hit by Ransomware Attack; Customers Left Without Credit Card Processing for Days

Unnamed Corporate Victims: Russian Access Broker Jailed for Facilitating Ransomware Attacks Targeting U.S. Companies

Pellenc: New Leak Site Tied to Active Initial Access Broker Emerges on Underground Forums