The Crypto24 ransomware group claims to have breached Hollysys Asia Pacific. Hollysys Asia Pacific is the Singapore-based regional headquarters of Hollysys Automation Technologies, a leading provider of automation and control technologies specializing in industrial automation, railway transport, and mechanical & electrical (M&E) solutions. The group has listed the company on their dark web leak site, initiating a countdown timer that suggests a ransom demand is active.
According to the actor, a deadline has been set for the publication of data. While the group typically exfiltrates sensitive information for double extortion purposes, the specific types of data allegedly compromised in this incident have not yet been publicly detailed.
