Threat actors claiming to be incransom have targeted Mastercom (mastercom.com.au) in Australia, alleging a ransomware intrusion into the company’s operations that support local government communications in Sydney. The extortion note threatens data theft or disruptive encryption to pressure payment, highlighting Mastercom’s role in providing two-way radio networks for Newcastle City Council, Maitland City Council, and Penrith City Council. #Australia
Category: Ransom Monitor
The ransomware claim targets Sahara Air Products in the United States, attributed to threat actor nightspire, with data including confidential technical drawings, documents, customer invoices, and shipment histories. The attackers are described as exfiltrating or threatening to release this data to pressure payment. #UnitedStates
The ransomware claim targets the victim TIS and is attributed to the threat actor qilin. The affected country is not specified #Unknown
Ransomware claim identifies CONREP SA (conrepsa.ro), a Romanian construction, contracting, and infrastructure company, as the victim targeted by the threat actor krybit. The claim describes disruption observed in Romania #Romania
A ransomware claim alleges Sonn Law Group was victimized by threat actor qilin. Country details are not provided and the case notes list N/A. #CountryNotSpecified
Autogalerie Heister is described as the victim in a ransomware claim attributed to the threat actor qilin. The report notes encrypted systems and potential data impact, with the incident linked to Germany #Germany
The claim reports that the ransomware actor qilin attacked SAAM Towage, a company located in Chile. No further indicators or data are available (N/A) about the incident.
#Chile
A claim by the ransomware actor incransom states that Campbell University suffered a data breach exposing up to 500GB of material. The leak is described as containing sensitive records, including allegations of misconduct and abuse, drug use, personal data, and information related to military recruitment of students, among other items #UnitedStates
Nan Liu Enterprises reports a ransomware incident attributed to the threat actor qilin. The claim includes no country or location details; #Unknown
A ransomware claim targets the victim A Roettgers, alleging that their files were encrypted and data exfiltrated unless a ransom is paid. The claim attributes the attack to threat actor qilin. #Unknown
A ransomware claim targets Chalmers & Kubeck, attributed to the threat actor qilin. The country of impact has not been disclosed. #Unknown
Ransomware claim involving Hofland in the Netherlands has been attributed to the threat actor qilin. Details are limited (N/A) #netherlands
TiMc claims to have breached Oncologica’s intranet and gained total control, exfiltrating over 1TB of data including a COVID-19 database and SaaS source code such as OncoMine KB along with other PII. A full data breach reportedly followed the DDL. #Unknown
AiLock claims to have compromised Alvi Associates, Inc., a 1979-founded engineering firm that specializes in integrated infrastructure services, including structural, water resources, transportation, and geotechnical engineering. This ransomware claim suggests potential disruption to the firm’s projects, though the affected country is not specified. #Unknown
Insomnia, a ransomware threat actor, claims to have compromised United Medical Doctors (UMD), a multi-specialty medical-surgical group with 70+ Southern California locations and 40+ specialties. The claim describes encrypted systems and potential exposure or release of patient data unless a ransom is paid. #UnitedStates