The Everest ransomware group claims to have breached four distinct organizations, alleging that deadlines for payment have passed for several of the victims, resulting in the publication of data. The latest list of alleged victims posted by the group includes:
-
ASUS (🇹🇼 Taiwan): A multinational computer hardware and consumer electronics company known for motherboards, graphics cards, and laptops.
-
Exegy (🇺🇸 USA): A global provider of low-latency market data solutions and predictive trading technology for the financial sector.
-
Petra Industries (🇺🇸 USA): A major wholesale distributor of consumer electronics and accessories.
-
Sarmap SA (🇨🇭 Switzerland): A software developer and service provider specializing in remote sensing and earth observation data, particularly synthetic aperture radar (SAR).
According to the actor, the compromised data varies by victim, with some organizations allegedly suffering significant intellectual property theft. The allegedly compromised data includes:
-
ASUS:
-
1TB+ of data
-
Camera source code
-
-
Exegy:
-
3TB+ of data
-
Full source code repositories
-
-
Petra Industries:
-
800,000+ files (full file tree published)
-
EDI (Electronic Data Interchange) logs and export results
-
Order processing files (e.g., ZUMY3PLORDERS)
-
Internal network directories
-
-
Sarmap SA:
-
300GB+ of data (full file tree published)
-
FTP directories related to specific projects (e.g., “FTP-Cambodia”)
-
Software license keys and update files (MAPscape)
-
Project-specific datasets (e.g., LAIvsYield trials, SOS-UTM48)
-
