Ransomware Group incransom Hits: rheem

20 April 2026

In the latest cybersecurity news, rheem — a company operating in the US — has fallen victim to a ransomware attack conducted by the group incransom. This data breach, discovered on 2026-04-20 20:36:54.711005, underscores the increasing need for proactive cybersecurity defenses as we continue through 2025.

In response to increasing cyber threats, it’s critical to protect your organization with proactive security measures. HookPhish provides enterprise-grade solutions designed to reduce your risk of future attacks:

Phishing Simulation – Test and improve employee readiness with realistic, controlled phishing campaigns.
Cybersecurity Awareness Training – Educate your team to recognize and respond to common attack tactics.
Data Breach Monitoring – Get real-time alerts if your organization’s data appears in public or dark web breaches.
Phishing Detection and Response – Detect, investigate, and neutralize phishing threats before they cause damage.

Protect your organization before it becomes the next headline. Explore HookPhish.

Incident Report

Attribute	Information
Target Organization	rheem
Threat Group	incransom
Summary	Rheem Manufacturing Company 1100 Abernathy Road, Suite 1700 Atlanta, GA 30328, United States www.rheem.com is a well-established manufacturer specializing in heating, cooling, and water heating products. Founded in 1925, the company has its headquarters in Atlanta, Georgia, and has grown to become a global leader in its industry. Company Overview. Rheem produces a wide range of products, including residential and commercial water heaters, boilers, air conditioning units, and heating, ventilation, and air conditioning (HVAC) equipment. The company is particularly noted for its commitment to energy efficiency, offering numerous ENERGY STAR® certified products. Leaked data: 320 GB (479,856 Files, 76,897 Folders) includes developments: technical documentation, drawings, test reports and other technical information, employee data containing personal information, corporate information, contracts and agreements (including non-disclosure agreements), financial information and metrics, and much more.
Date of Breach	2026-04-20 20:00:00.000000
Discovery Date	2026-04-20 20:36:54.711005
Region	US
Target Domain	None
Business Sector	Manufacturing

Don’t wait for a breach to take action — stay informed and take control of your cybersecurity posture today.

You can also check if your organization’s data has been exposed using our free Data Breach Checker.

Disclaimer: HookPhish does not engage in the exfiltration, downloading, taking, hosting, viewing, reposting, or disclosure of any stolen information. All breach data reported here is sourced from publicly available threat intelligence feeds for awareness purposes only.