The Akira ransomware group has allegedly added two new US-based companies to its list of victims, claiming to have exfiltrated a significant amount of sensitive data. The group posted notices on its dark web leak site on September 1, 2025, targeting Automated Business Solutions, an office equipment supplier, and Genmark Automation, a key manufacturer for the semiconductor industry. These incidents highlight the persistent threat ransomware poses to various sectors, from business solution providers to critical technology manufacturing.
The threat actors claim to be in possession of over 140GB of data combined from the two companies and have threatened to release it. The group alleges that Genmark Automation’s management “refused to take the situation seriously.” The claimed data leaks contain highly sensitive personal and corporate information, which could lead to severe consequences for the employees and customers of both companies if released.
The victims and the allegedly stolen data include:
- 🇺🇸 Automated Business Solutions: A designer and supplier of office equipment and comprehensive business solutions. The group claims to have 93GB of data, including:
- Financial data (audits, payment details, invoices)
- Employee and customer information (credit cards, death certificates, medical information, emails, phones, addresses)
- Confidential information and NDAs
- 🇺🇸 Genmark Automation: A California-based worldwide developer and manufacturer of automation equipment for the semiconductor, solar, and data storage industries. The group claims to have 47GB of data, including:
- Financial data (audits, payment details, invoices)
- Employee and customer information (green cards, passports, driver’s licenses, Social Security Numbers, credit cards, birth/death certificates, medical information)
- Confidential information and NDAs
