Paulmann Licht GmbH Targeted: The Impact of a Ransomware Attack

Incident Date:

April 8, 2024

World map



Paulmann Licht GmbH Targeted: The Impact of a Ransomware Attack


Paulmann Licht GmbH


Hunters International


Springe, Germany

, Germany

First Reported

April 8, 2024

Ransomware Attack on Paulmann Licht GmbH

Victim Overview

Paulmann Licht GmbH, a leading lighting manufacturer, was recently targeted in a ransomware attack by the group Hunters International. The company offers a wide range of innovative lighting products and systems for homes and outdoor areas. With a global presence in over 40 European countries, Paulmann employs around 400 staff members and generated $59.6 million in revenue in 2024.

The company, based in Germany, fell victim to a cyberattack by a group known as Hunters International, involving ransomware. Approximately 320.7 GB of data, consisting of 157,092 files, was stolen from their website. The ransom deadline was set for April 10th, 2024. This data may have been published by this time.

Company Size and Revenue

Paulmann Licht GmbH employs approximately 400 people globally and markets its products in various European countries. The company's annual revenue was reported at $59.6 million in 2024, showcasing its significant presence in the lighting industry.

Industry Standing

The German business stands out in the manufacturing sector for its focus on providing energy-efficient lighting solutions with premium design and technology. The company offers over 2,500 products, including recessed luminaires, LED strips, and customizable outdoor lighting options. Additionally, Paulmann's commitment to social responsibility and sustainability further distinguishes them in the industry.


As a prominent player in the manufacturing sector with a strong market presence, Paulmann Licht GmbH may be targeted by threat actors like Hunters International due to the valuable data they possess. The company's extensive network and customer base could make them susceptible to attacks aimed at stealing sensitive files and causing havoc in their operations.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.