- 3,001
- 280
- 1,730
The ransomware hacking group Sarcoma has claimed responsibility for an attack on the Taiwanese printed circuit board manufacturer Unimicron. The hackers posted samples of files allegedly stolen from the company's systems on their website and threatened to "leak" other data unless they receive a ransom.
According to Bleeping Computer , the attackers claimed on their leak site that they had 377 GB of data, including SQL files and documents, stolen from the Taiwanese company. Unimicron is one of the largest printed circuit board manufacturers in the world, with factories and service centers in Taiwan, China, Germany, and Japan. Its products are widely used in the production of monitors, computers, peripherals, and smartphones. On February 1, 2025 , a Unimicron message was published on the Taiwan Stock Exchange (TWSE) portal , which stated that the company's operations had been disrupted by a ransomware attack. According to the statement from the manufacturer, the incident occurred on January 30 of this year and affected both Unimicron Technology (Shenzhen) Corp. and its subsidiary in China. The company emphasized that the impact of this attack was minor. It was also reported that Unimicron had hired an external cyber forensics team to analyze the incident and help take protective measures. Unimicron representatives have not yet confirmed the fact of a data leak. But given the recent ransomware attack, the data samples published by Sarcoma may be genuine. Sarcoma's first attacks were recorded in October 2024, and the group quickly became one of the most active in this area, claiming to have hacked over 36 organizations. In November 2024, specialists from Cyfirma warned that Sarcoma was becoming a serious threat due to the use of aggressive tactics and a rapidly growing number of victims. Confirming the findings of their colleagues, in December 2024, experts from Dragos included Sarcoma in the list of the most dangerous emerging threats to industrial enterprises worldwide. More information about Sarcoma can be found in a report by RedPiranha . Researchers reported that malware operators use phishing emails and exploit n-day vulnerabilities to gain initial access, as well as attack supply chains, seeking to compromise not only service providers but also their customers. @ xakep.ru
According to Bleeping Computer , the attackers claimed on their leak site that they had 377 GB of data, including SQL files and documents, stolen from the Taiwanese company. Unimicron is one of the largest printed circuit board manufacturers in the world, with factories and service centers in Taiwan, China, Germany, and Japan. Its products are widely used in the production of monitors, computers, peripherals, and smartphones. On February 1, 2025 , a Unimicron message was published on the Taiwan Stock Exchange (TWSE) portal , which stated that the company's operations had been disrupted by a ransomware attack. According to the statement from the manufacturer, the incident occurred on January 30 of this year and affected both Unimicron Technology (Shenzhen) Corp. and its subsidiary in China. The company emphasized that the impact of this attack was minor. It was also reported that Unimicron had hired an external cyber forensics team to analyze the incident and help take protective measures. Unimicron representatives have not yet confirmed the fact of a data leak. But given the recent ransomware attack, the data samples published by Sarcoma may be genuine. Sarcoma's first attacks were recorded in October 2024, and the group quickly became one of the most active in this area, claiming to have hacked over 36 organizations. In November 2024, specialists from Cyfirma warned that Sarcoma was becoming a serious threat due to the use of aggressive tactics and a rapidly growing number of victims. Confirming the findings of their colleagues, in December 2024, experts from Dragos included Sarcoma in the list of the most dangerous emerging threats to industrial enterprises worldwide. More information about Sarcoma can be found in a report by RedPiranha . Researchers reported that malware operators use phishing emails and exploit n-day vulnerabilities to gain initial access, as well as attack supply chains, seeking to compromise not only service providers but also their customers. @ xakep.ru