The ransomware claim involves gibGREINER, which was targeted by the threat actor sarcoma, resulting in a leak of 52 GB of archive files containing project-related data. The incident impacted Austria (AT).
Incident Details
- Victim: gibGREINER
- Country: AT
- Actor: sarcoma
- Source:
- Discovered: 2025-06-17 08:03:01.336252
- Published: 2025-06-17 08:02:59.613368
Information
- Participated in a large-scale infrastructure project involving the construction of Munichβs Franz-Josef Strauss Airport, which included multiple individual structural elements within a unified project scope.
- Highlighted the dependency of each component on the overall project environment and shared utility networks for technical systems.
- Involved broader transportation initiatives, specifically the German Unity Transport Projects (Railway), executed over a large project area.
- Coordination of construction phases was managed by local project centers, with central project control handled by gibGREINER.
- Construction segments were delineated by corridors, which were tendered, commissioned, and billed as comprehensive packages.
- The project covered a geographic area in Germany with a leak size of 52 GB, involving archive files containing various documents.
Disclaimer: This post is based on public claims made by the ransomware group "sarcoma". I cannot confirm the accuracy of the information. However, I would be happy to share any official statement from the affected organization to provide clarification.