The Everest ransomware group, a known threat actor specializing in data extortion and initial access brokerage, has listed several new victims on its dark web leak site. The latest list of alleged victims posted by the group includes:
-
Iron Mountain (🇺🇸): A global leader in information management services, storage, and data protection.
-
Polycom (🇺🇸): A major American multinational corporation (now part of HP) developing video, voice, and content collaboration technology.
-
Hosokawa Micron Group (🇯🇵): An international provider of powder and particle processing technology and systems.
-
Shinwa Co Ltd (🇯🇵): A prominent Japanese manufacturer specializing in construction equipment and scaffolding systems.
-
SIGMA Processing Group (🇵🇦): A financial services provider; file samples suggest operations in Panama.
-
Acu Trans Solutions LLC (🇺🇸): A medical transcription and billing services provider handling highly sensitive patient records.
-
Stellium (🇺🇸): A specialized consultancy firm focused on supply chain management and SAP solutions.
According to the actor, the compromised data spans terabytes of sensitive internal information across the victims. The allegedly compromised data includes:
-
Iron Mountain: 1.4 TB of internal company documents, personal documents, and client information.
-
Stellium: 360 GB of internal documents, client invoices, and project files.
-
Acu Trans Solutions LLC: 253 GB of critical medical data, explicitly including Electronic Medical Records (EMRs), patient history, private patient information, and billing records.
-
Polycom: 90 GB of internal company documents and client information.
-
Shinwa Co Ltd: 42 GB of internal company documents and diagrams.
-
Hosokawa Micron Group: 30 GB of internal company documents and client data.
-
SIGMA Processing Group: 19 GB of data, comprising over 389,000 files including financial records and transaction logs.
Daily Dark WebRead More
T1
