The Everest ransomware group has claimed another victim in what appears to be a connected attack, listing Brunton-Shaw on its dark web portal just after EMM Corp. The group alleges to have stolen 900 GB of data from Brunton-Shaw, a UK-based manufacturer of high-quality steel wire ropes and a brand operating under the Usha Martin corporate umbrella. The attackers have posted a new set of proof files and set a similar countdown timer, escalating the pressure on the parent organization.
The evidence leaked from Brunton-Shaw’s systems is highly specific and sensitive, demonstrating the depth of the alleged breach. Sample files include internal audit forms, technical engineering documents like reel capacity calculators, and confidential accident log reports containing the names of employees involved and details of workplace incidents. The publication of such information not only violates the privacy of the individuals named but also exposes the company to potential regulatory and legal challenges regarding health and safety.
This incident, following the attack on EMM Corp, suggests the Everest group has carried out a comprehensive compromise of the entire corporate network of Usha Martin UK and its related entities. By targeting multiple business units and leaking distinct datasets for each, the attackers are maximizing their leverage. The combined breach exposes a vast trove of financial, operational, and personal data, creating a multi-faceted crisis for the manufacturing giant.
The allegedly leaked data includes:
- Personal data
- Customer data
- Financial documents
- Internal documents
- Contracts
- Invoices
- Health & Safety reports
