The Everest ransomware group has allegedly added four new victims to its data leak site, all of which are based in Italy. The group claims to have exfiltrated a significant amount of data from these companies and has started a countdown timer, threatening to release the stolen information if their demands are not met. The targeted organizations operate in diverse sectors, including finance, legal services, energy, and mechanics.
The list of victims allegedly includes over 140GB of combined internal data. The threat actor claims the stolen information contains a “huge variety of personal documents and information of employees and clients.” Evidence provided in the form of screenshots suggests that the compromised data includes Outlook Data Files, which could contain sensitive email communications. The companies targeted are:
- 🇮🇹 Professional Trust Company: An Italian firm specializing in trust services, asset protection, and wealth management. The group allegedly stole 57GB of data.
- 🇮🇹 Studio Legale Tisot Iuris: A law firm based in Pordenone, Italy. The group claims to have exfiltrated 17GB of internal data.
- 🇮🇹 Key 4 Energy Srl: A company in the energy sector providing consultancy for energy efficiency and renewable sources. The attackers allegedly hold 12GB of their data.
- 🇮🇹 MFO ITALIA: A company specializing in industrial mechanics and metalworking. The group claims to have stolen 54GB of data.
