hiveleak attacks Centurion Stone

Incident Date:

March 22, 2022

World map



hiveleak attacks Centurion Stone


Centurion Stone




Greensboro, USA

North Carolina, USA

First Reported

March 22, 2022

Centurion Stone Targeted by HiveLeak Ransomware Group

Centurion Stone, a leading supplier of natural stone products, has been targeted by the HiveLeak ransomware group, as announced on the group's dark web leak site. The company, which operates in the construction sector, has a significant online presence, with a website that showcases their extensive inventory and commitment to offering wholesale pricing to customers.

Company Overview

Centurion Stone is a prominent player in the stone industry, boasting a warehouse inventory of over 300,000 square feet of stone daily. Their website highlights their position as the number one supplier of Centurion Stone, with a focus on providing the best direct supply of the product. The company's size and industry standing make it an attractive target for cybercriminals seeking to exploit vulnerabilities and demand ransom payments.

Industry Standout

Centurion Stone's commitment to offering wholesale pricing to customers sets them apart in the construction sector. Their extensive inventory allows them to pass down significant savings to their customers, making them a preferred choice for both single general contractors and homeowners. This business model, while successful, may also expose them to potential vulnerabilities, as larger inventories and extensive customer databases can be attractive targets for cybercriminals.


The specific vulnerabilities that led to Centurion Stone being targeted by the HiveLeak ransomware group are not publicly disclosed. However, it is known that the HiveLeak group uses a .NET payload and supports execution on Windows, Linux-based operating systems, and VMWare ESXi. This versatility allows them to target a wide range of systems and networks, increasing the likelihood of successful attacks.

Centurion Stone's position as a leading supplier of natural stone products and their commitment to offering wholesale pricing have made them a target for the HiveLeak ransomware group. The specific vulnerabilities exploited by the group are not yet known, but the versatility of the HiveLeak ransomware suggests that Centurion Stone may have been targeted due to their extensive inventory and customer database.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.