The Medusa ransomware group claims to have breached several international companies, posting their details on its dark web leak site. The group is threatening to publish stolen data unless a ransom is paid for each respective company.
The latest list of alleged victims posted by the group includes:
- Cemtrex (🇺🇸): A diversified industrial and manufacturing company headquartered in Brooklyn, New York, that provides custom electronics, industrial contracting, and environmental monitoring instruments.
- EcoPetróleo (🇩🇴): A Dominican petroleum products company based in Santo Domingo, known for its focus on environmental conservation initiatives alongside its primary business.
- Design To Print (🇺🇸): A US-based printing company headquartered in St. George, Utah, specializing in indoor and outdoor advertising solutions and custom banners.
- LA VOIE EXPRESS (🇲🇦): A Moroccan logistics firm located in Casablanca that offers comprehensive services including messaging, transport, e-commerce solutions, and warehousing.
The ransomware group has published proof-of-hack materials for each company, including screenshots of file directories and sensitive corporate documents. According to the actor, the total data allegedly stolen from Design To Print amounts to 3.3 TB.
While the full extent of the compromised information is not yet public, the samples suggest the stolen data includes:
- Financial records and reports
- Employee information and contracts
- Client databases and correspondence
- Internal operational documents and intellectual property
