Powered by MOMENTUM MEDIA
cyber daily logo
Breaking news and updates daily. Subscribe to our Newsletter

Australian steel fabricator Meshworks suffers alleged Sarcoma ransomware attack

The Sarcoma ransomware gang has claimed to have breached the network of Australian steel fabricator Meshworks.

user icon Daniel Croft
Wed, 30 Oct 2024
Australian steel fabricator Meshworks suffers alleged Sarcoma ransomware attack
expand image

Meshworks is an Australian organisation that manufactures “steel welded wire mesh for the mining, construction, rural, fabrication, safety, storage, temporary fencing and materials handling industries”. Its products are 100 per cent recycled.

The Sarcoma threat group listed Meshworks on its dark web leak site, claiming to have stolen 8 gigabytes of “files”.

The group also posted a sample of the stolen data, which appears to be a number of business documents containing supplier names and addresses, as well as data relating to leave hours and financial information relating to a tax return.

============
============

While the threat actor provided no other information, it set a timer for the publication of the data, which had just over 19 days left at the time of writing. While this may suggest that the threat group has begun ransom negotiations with Meshworks, this has not been verified by Cyber Daily.

Cyber Daily has contacted Meshworks for more information and is awaiting a response.

The Sarcoma ransomware group made waves earlier this month, appearing for the first time on the dark web, having listed three Australian organisations and one New Zealand organisation, among many others.

The Plastic Bag Company, West Australian firm Road Distribution Services, and Coles and Woolworths supplier Perfection Fresh were all Aussie firms listed on the dark web by the threat group. Additionally, Advanced Accounting from New Zealand fell victim to the gang.

For now, little is known about the Sarcoma operation – it appeared overnight with 30 victims listed and claiming to have exfiltrated more than five terabytes of data between them.

Like many ransomware operators, Sarcoma describes itself in flattering terms.

“Today, more and more information is stored on digital media. Companies that store sensitive information on their servers must take a responsible attitude to security,” Sarcoma said on its About Us page.

“Our mission is to show the world how important it is to keep data safe. If you see your company on our website, it means that security was low.

“We invite access brokers, interested parties, aggrieved employees of companies to co-operate. Together we can be stronger and richer.

“We know how to make our cooperation profitable and safe.”

Daniel Croft

Daniel Croft

Born in the heart of Western Sydney, Daniel Croft is a passionate journalist with an understanding for and experience writing in the technology space. Having studied at Macquarie University, he joined Momentum Media in 2022, writing across a number of publications including Australian Aviation, Cyber Security Connect and Defence Connect. Outside of writing, Daniel has a keen interest in music, and spends his time playing in bands around Sydney.

newsletter
cyber daily subscribe
Be the first to hear the latest developments in the cyber industry.