The Akira ransomware group claims to have breached two new companies, adding them to its dark web leak site on October 1, 2025. The actors allege to have exfiltrated a significant amount of data from each organization. The latest list of alleged victims posted by the group includes:
- Barr & Barr, Inc. (πΊπΈ): A US-based construction management company specializing in building information modeling and construction management.
- Keystone Solutions Group (πΊπΈ): A medical device contract manufacturer and product development company based in Kalamazoo, Michigan.
According to the group, the compromised data from Barr & Barr allegedly includes 323GB of corporate files. The data purportedly contains:
- Employee information (names, addresses, dates of birth, phones)
- Scanned passports and driver’s licenses
- Financials
- Client information
- Contracts and agreements
For Keystone Solutions Group, the actors claim to have exfiltrated over 650GB of data. The compromised information allegedly includes:
- Financial data (audits, payment details, financial reports, invoices)
- Employee and customer information (passports, driver’s licenses, Social Security Numbers, emails, phones)
- Confidential information and NDAs
