The Akira ransomware group has allegedly expanded its list of victims, claiming to have breached six different companies in a widespread and varied attack. In a recent update to their dark web leak site, the threat actors threatened to publish gigabytes of sensitive corporate and personal data, demonstrating their continued focus on a double-extortion strategy.
The victims named in this alleged campaign span multiple critical industries, underscoring the broad scope of the operation. The targeted companies purportedly include:
- Seppeler Gruppe: An international group of industrial service and production companies.
- Access Financial: A leading global provider of contract management and payroll services.
- Keystone Shipping: A U.S.-based shipowner and operator with over a century of history.
- Integrity Mortgage: A mortgage provider operating under the MAC 5 Mortgage umbrella.
- Datrose: A business outsourcing company specializing in document management and staffing.
- VS Associates: A financial firm providing wealth management and investment advice.
The attackers claim the stolen data is comprehensive and highly sensitive. If released, the information could cause significant operational and reputational damage. The allegedly exfiltrated data includes:
- Personal employee and client information (Social Security numbers, dates of birth, addresses, and ID scans)
- Corporate financial data (audits, payment details, invoices, and salary information)
- Confidential legal and business documents (NDAs, contracts, and correspondence)
- Proprietary operational data, including cargo ship blueprints
