Construction company CB Group Australia impacted by ransomware attack

The ransomware crime group Medusa has announced that it accessed and exfiltrated one terabyte of data, from CB Group, a civil engineering and construction company based on the Gold Coast of Australia. This data breach was announced through a post on Medusa's darknet leak site on August 14.

Medusa has provided a preview of the stolen data by releasing 27 sample files from the larger collection. The preview included information such as photos of staff driver's licenses, invoices, a company organizational chart, and confidential deeds and contracts.

CB Group has so far not commented on the event.

The group has also stated its intention to publicly release the compromised data on August 24. Medusa is demanding a ransom of $100,000 for the complete deletion of the data.

Medusa is all about profits: They are offering the option to extend the ransom deadline, at a cost of $10,000 for each additional day. They also offer the data to be purchased by anyone else in advance of the deadline for the same amount as the original ransom. This approach aims to put pressure on the victim, as each day the data remains accessible online, it can potentially be acquired by anyone with the financial means.