Back to Blog
high severity July 10, 2026 · scope unconfirmed

Open Options Listed by thegentlemen Ransomware Group

⚠ Were you caught in this breach?
Check your email against 15.4B+ leaked records in 15 seconds — free, no signup.
Scan my email — free → Instant · no account

***.com Open Options was a prominent Texas-based software company specializing in open-architecture access control solutions, best known for its flagship enterprise platform, DNA Fusion. The company focused on delivering scalable physical security and identity management software tailored to complex organizational needs. Following a strategic acquisition, the company's technology and brand were integrated into Acre Security, where it continues to operate and evolve as DNA Fusion by acre security

Severity High
Disclosed July 10, 2026
Affected Unconfirmed
Data exposed Internal files exfiltrated in ransomware attack

On July 10, 2026, the ransomware group known as thegentlemen listed Open Options on its leak site, confirming that internal files had been exfiltrated from the Texas-based software company during a ransomware attack.

Confirmed Facts from Reporting

Public reporting indicates the incident involved internal files stolen from Open Options, a company known for its DNA Fusion platform used in physical security and identity management systems. The data was posted to the group’s leak site hosted on ransomware.live. Affected users remain unknown at this time, and no specific volume of records has been disclosed. The company had been acquired prior to the breach, with its technology and brand integrated into Acre Security, where it continues as DNA Fusion by Acre Security.

Why This Matters for You and Your Family

When a security software provider like Open Options suffers a breach, the exposed internal files can contain details that link corporate systems to the personal information of employees, contractors, and even customers. If your workplace, school, or community organization used DNA Fusion for access control, your name, contact information, or access credentials may now sit in files controlled by attackers. For ordinary families this means heightened risk of identity theft, phishing campaigns tailored to your daily routines, and potential unauthorized access to buildings or accounts tied to those systems. Credential leaks like this one often spread far beyond the original victim company.

The Doxxing and Identity-Chain Implications

Stolen internal files frequently include spreadsheets, configuration documents, and email archives that connect email addresses, usernames, phone numbers, and physical addresses. Attackers can chain this information with data from previous breaches to build complete profiles. A single exposed work email can lead to personal accounts, social-media handles, and even children’s online profiles. Public reporting shows these chains frequently result in doxxing, where private details are published to harass or extort families. Gaming accounts belonging to you or your children are especially vulnerable because the same passwords or recovery emails are often reused across work and home environments.

Thegentlemen’s Publicly Known Track Record

Public reporting attributes thegentlemen with emerging in recent years as a ransomware operation that combines data theft with extortion. The group has targeted organizations across multiple sectors, posting victim data on dedicated leak sites when ransom demands are not met. Their typical playbook involves initial access through common vulnerabilities or phishing, followed by exfiltration of sensitive files and deployment of ransomware. They then pressure victims with deadlines for payment, threatening to release the stolen data publicly. Exact prior victim counts and timelines remain limited in open sources, but the group’s consistent use of leak sites matches patterns seen in other mid-tier ransomware actors.

What to do

  • Run a DoxxScan to map every link between your work emails, personal handles, phone numbers, and real-world identity so hidden connections surface immediately.
  • Enable continuous DoxxScan monitoring across 15.4B+ breach records and 100+ platforms so the next leak exposing you or your family is caught in hours rather than months.
  • Rotate any password you used at Open Options or DNA Fusion anywhere else it appears, then switch to 2FA through an authenticator app instead of text messages.
  • Cover the entire household with DoxxScan family protection that includes dependents and children’s gaming accounts, which often chain back to the same addresses or recovery details leaked in incidents like this.
  • Let remediation specialists handle takedown requests for any exposed personal information found on data broker sites or underground forums.

The incident underscores that even after a company is acquired and rebranded, its historical data can still endanger the people who relied on its products. Starting with a clear picture of your current exposure is the most practical step you can take today. DoxxScan by GalaxyWarden delivers continuous monitoring across 15.4 billion breach records and more than 100 platforms, AI-powered identity-chain mapping that connects scattered online handles to real identities, and hands-on remediation by specialists who manage takedowns for you. Its household coverage extends to children’s gaming accounts that frequently become targets once credential leaks cascade into full doxxing chains.

Share this Post on X Reddit Email
Why this isn’t just another breach checker

A breach leaks your credentials. Then hackers chain those credentials to your address, family, phone, and employer using public broker sites. We’re the only tool built around that chain.

Free checker Tells you the breach happened. End of story. You’re still on 800+ broker sites.
$129+/yr Broker-removal services scrub the address but don’t see the breach — next leak re-exposes you.
GalaxyWarden Maps the chain. Cleans both halves. $19 one-shot. Closed loop.

⚠ Were you in this breach?

Free email scanner. We check your address against 15.4B+ leaked records in 15 seconds — then show you the $19 cleanup that removes you from the broker sites aggregating leaked data.

Check my email — free →
Close the chain attack

Both halves of the chain, cleaned once.

A breach put your credentials in 15.4B+ leaked records. Hackers chain that data to your address on 800+ broker sites. GalaxyWarden closes both halves for $19 once — no subscription required.

Clean both halves — $19 →
Free breach scan + 800+ broker letters + 30-day proof · one payment, no subscription
W Warden Plus — ongoing monitoring $9.99/mo
Warden Plus ($9.99/mo or $99/yr): weekly re-scans, breach alerts, AI Concierge, auto re-files on relisted brokers.