Unigaz, a prominent gas distribution company operating across the Middle East, has allegedly fallen victim to a ransomware attack by the MedusaLocker group. Unigaz is a key player in the energy sector, involved in the distribution and supply of liquefied petroleum gas (LPG) for various commercial and residential uses. The company has a significant presence, indicated by extensive operational and financial records.
The MedusaLocker ransomware group, known for its attacks on various industries worldwide, has allegedly exfiltrated a substantial amount of data from Unigaz’s servers. The compromised information reportedly includes highly sensitive financial documents, internal communications, and operational data. This breach could have serious implications for the company’s operations, client confidentiality, and regulatory compliance. The alleged leak (245 pages) appears to span several years, with detailed records from different departments.
The allegedly leaked data includes, but is not limited to:
- Abu Dhabi Accounts and Company Documents, including ADNOC invoices and pricing information
- Audit reports from 2018 to 2024
- Bank Account details and statements
- Commission details and contracts
- Customer Legal process documents
- Gas Distribution Reports and Gas Stock Details
- Invoices (Gas supply, Maintenance, Project invoices)
- Legal Documents including company insurances and trade licenses
- Payroll and WPS (Wage Protection System) records from 2020 to 2024
- Sales and Business Development records
- Procurement data, including MRFs (Material Requisition Forms) and POs (Purchase Orders)
- HR and Employee-specific folders
- CRM (Customer Relationship Management) data
- Project-specific design and engineering documents, including DGDA (Diriyah Gate Development Authority) project files
