The Lynx ransomware group claims to have breached the networks of several US-based organizations, posting stolen data as proof. The attack targets a diverse range of sectors, from government services to biotechnology.
The latest list of alleged victims posted by the group includes:
- Porter County PACT (πΊπΈ): A government-affiliated organization in Valparaiso, Indiana, that provides community service and substance abuse programs.
- LWG Construction (πΊπΈ): A commercial construction services company based in Morgan Hill, California, specializing in hospitality, retail, and medical projects.
- Vir Biotechnology (πΊπΈ): A clinical-stage immunology company headquartered in San Francisco, California, focused on treating and preventing serious infectious diseases.
The allegedly compromised data varies between the victims but appears to be highly sensitive. According to the actor, the stolen files include:
- Full names and personal information of program participants
- Court orders and legal documents
- Substance abuse program records
- Internal financial documents and tax forms
- Client project details and agreements
- Sensitive clinical research and trial data
- Data transfer agreements
