The Lynx ransomware group has added the Admiral Gaming Network, a prominent Italian gaming company and a subsidiary of the Novomatic AG Group, to its list of alleged victims. In a post on its dark web leak site, the group claims to have carried out a significant data breach, exfiltrating over 600 GB of sensitive information from the company and its affiliates, including Admiral Pay and Allstar. Admiral Gaming Network is a major employer in Italy, with over 4,000 staff since its establishment in 2007, operating numerous gaming halls and commercial offerings throughout the country.
The threat actors are threatening to publicly release the stolen data if the company fails to engage with them. As proof of their intrusion, the group published several screenshots allegedly showing their access to the company’s internal network. These images display directory listings filled with sensitive folders, internal financial software, and even what appears to be live access to the company’s CCTV security camera feeds from multiple locations. The attackers specifically noted that the compromised data includes a vast trove of confidential files.
Based on the announcement and the evidence provided, the allegedly stolen data includes:
- Financial Documents
- Legal Documents
- Tax Information
- Internal Emails
- Cash Inventory and Control Files
- Customer Relationship Management (CRM) Data
- Personal Data of Employees and Customers
- Internal Reports and Correspondence
