The threat actor akira has claimed responsibility for a ransomware attack on Sturdevant’s Auto Parts, accessing and listing 16 GB of sensitive corporate data including personal documents, contracts, client information, and financial records, which they have made available via a torrent magnet link for download. The impacted country is the United States. #United States
Incident Details
- Victim: Sturdevant’sAuto Parts
- Country:
- Actor: akira
- Source:
- Discovered: 2025-06-17 13:11:06.880241
- Published: 2025-06-17 13:11:03.816863
Information
- The ransomware attack targeted Sturdevant’s Auto Parts, a major regional automotive parts and accessory business with 40 locally owned stores across South Dakota, North Dakota, Iowa, Minnesota, and Nebraska.
- The attackers, identified as AKIRA, accessed and encrypted 16 GB of corporate data, which includes personal documents, numerous contracts and agreements, client data, and financial records such as audits, payment details, and reports.
- The company facilitated the process of data recovery by providing a simple method for victims to download the compromised data via torrent clients using magnet links.
- To retrieve the data, users need to open a torrent client like Vuze, uTorrent, qBittorrent, or Transmission, then add the provided torrent file or magnet URL, which contains no password protection.
- The magnet URL for accessing the data is: magnet:?xt=urn:btih:1F9574F57224B33F71BA4170BAAE9366323BBAFF&dn=sturdevants&tr=udp://tracker.openbittorrent.com:80/announce&tr=udp://tracker.opentrackr.org:1337/announce.
Disclaimer: This post is based on public claims made by the ransomware group "akira". I cannot confirm the accuracy of the information. However, I would be happy to share any official statement from the affected organization to provide clarification.