The Sarcoma ransomware group has allegedly targeted Machu Picchu Foods, a leading Peruvian manufacturer renowned for its single-origin cocoa and premium chocolates sold on the worldwide market. The threat actor has claimed responsibility for the cyberattack, threatening to release a significant 68 GB archive of files allegedly stolen from the company’s systems. Machu Picchu Foods is a key player in the global food industry, recognized for its commitment to high-quality, sustainable, and organic products, making this breach a significant concern for both the company and its partners.
An analysis of the allegedly leaked data samples reveals a wide range of sensitive information. The compromised files appear to contain not only confidential corporate documents but also the personal and medical information of its employees. The exposure of such data could lead to serious privacy violations and reputational damage. The breach seems to have exfiltrated internal documents that are critical to the company’s operations and employee welfare, indicating a deep and concerning network intrusion.
The data allegedly exfiltrated from Machu Picchu Foods includes:
- Internal product test reports and quality control analysis
- Employee medical fitness certificates and health records
- Personal identification documents of employees
- Confidential corporate files
