Victorian landscaping firm Super Gardens data leaked by ransomware group DragonForce

The DragonForce ransomware gang has leaked sensitive employee data from Super Gardens, a Victorian landscaping firm. The claimed attack occurred on July 1, 2024, and resulted in the theft of 120 gigabytes of data, with the ransomware gang posting a ransom deadline of approximately six days.

A total of 107,120 files have been leaked after the deadline lapsed. The leaked data includes:

• Internal documents such as training , invoices, and details of dangerous chemicals and materials used in landscaping operations.
• Human resources documents containing sensitive employee information, including medical checks and treatment reports, pre-employment and police checks, names, addresses, driver’s license scans, and tax file number declarations.
• Incident and injury reports detailing workers' compensation claims, property damage, and injury details.
• Client-related documents for major clients like Melbourne Racing Club, La Trobe University, and Melbourne Airport.

Approximately 300 Super Gardens employees, including casual and full-time workers and apprentices, have had their personal information compromised.

Super Gardens has not commented about the incident.