The Sinobi ransomware group claims to have breached LeMatic, a leader in automated baking technology offering innovations such as the AutoOp® and AutoEye® equipment lines. Based in Jackson, Michigan, the company provides industrial solutions for slicing, packaging, and robotics to bakeries and food producers worldwide. The group has listed the company on their dark web leak site, signaling a significant compromise of the manufacturer’s internal infrastructure. Screenshots provided by the threat actors indicate they gained deep access to the company’s virtualization environment, specifically identifying VMware ESXi servers (esx2.lematic.domain and esx3.lematic.domain) and internal network shares.
According to the actor, 450 GB of data was exfiltrated during the attack. The allegedly compromised data includes:
-
Confidential corporate documents
-
Financial data
-
Customer’s data
-
Internal server snapshots and file system hierarchies
Daily Dark WebRead More
R1
T1
