Ransom! higuchi-inc.co.jp (JUN-2026)

Ransom! higuchi-inc.co.jp (JUN-2026)
higuchi-inc.co.jp in Japan reported ransomware activity by threat actor stormous, demanding payment after encrypting or threatening access to comprehensive financial statements (Balance Sheets, asset records, liabilities, capital, A/R, and A/P) and Sage 50 database backups associated with the .ptb extension. The incident also impacted corporate operational data including domestic and international inventory tracking and trade/business operations in #Japan

Incident Details

  • Victim: higuchi-inc.co.jp
  • Sector: Not Found
  • Country: JP
  • Actor: stormous
  • Source:
  • Discovered: 2026-06-28T21:30:38.576692+00:00
  • Published: 2026-06-28T00:00:00+00:00

Information

  • Comprehensive financial statements, including balance sheets, asset records, liabilities, capital, accounts receivable (A/R), and accounts payable (A/P) database backups from Sage 50 (formerly Peachtree Accounting software), indicated by the .ptb file extension.
  • Corporate data detailing domestic and international inventory tracking, trade checking, and business operations.

Disclaimer: This post is based on public claims made by the ransomware group "stormous". I cannot confirm the accuracy of the information. However, I would be happy to share any official statement from the affected organization to provide clarification.

monitored by: ransomware.live