iscover
Share this article on:
Powered by
MOMENTUM
MEDIA
The Sarcoma ransomware gang has claimed to have breached the network of Australian steel fabricator Meshworks.
Meshworks is an Australian organisation that manufactures “steel welded wire mesh for the mining, construction, rural, fabrication, safety, storage, temporary fencing and materials handling industries”. Its products are 100 per cent recycled.
The Sarcoma threat group listed Meshworks on its dark web leak site, claiming to have stolen 8 gigabytes of “files”.
The group also posted a sample of the stolen data, which appears to be a number of business documents containing supplier names and addresses, as well as data relating to leave hours and financial information relating to a tax return.
While the threat actor provided no other information, it set a timer for the publication of the data, which had just over 19 days left at the time of writing. While this may suggest that the threat group has begun ransom negotiations with Meshworks, this has not been verified by Cyber Daily.
Cyber Daily has contacted Meshworks for more information and is awaiting a response.
The Sarcoma ransomware group made waves earlier this month, appearing for the first time on the dark web, having listed three Australian organisations and one New Zealand organisation, among many others.
The Plastic Bag Company, West Australian firm Road Distribution Services, and Coles and Woolworths supplier Perfection Fresh were all Aussie firms listed on the dark web by the threat group. Additionally, Advanced Accounting from New Zealand fell victim to the gang.
For now, little is known about the Sarcoma operation – it appeared overnight with 30 victims listed and claiming to have exfiltrated more than five terabytes of data between them.
Like many ransomware operators, Sarcoma describes itself in flattering terms.
“Today, more and more information is stored on digital media. Companies that store sensitive information on their servers must take a responsible attitude to security,” Sarcoma said on its About Us page.
“Our mission is to show the world how important it is to keep data safe. If you see your company on our website, it means that security was low.
“We invite access brokers, interested parties, aggrieved employees of companies to co-operate. Together we can be stronger and richer.
“We know how to make our cooperation profitable and safe.”
Be the first to hear the latest developments in the cyber industry.
