Huntress • 5w
Akira Ransomware Breach: Sunrise Company and Associated Luxury Entities
The Akira ransomware group compromised the network of Sunrise Company, a US-based real estate developer, and its associated subsidiaries, Toscana Country Club and Andalusia Country Club. Approximately 13GB of sensitive data was exfiltrated, including highly sensitive PII of the CEO's family (passports, driver's licenses), corporate financial records, and client contracts. While the specific initial access vector for this incident was not disclosed, Akira typically leverages vulnerabilities in VPN appliances or compromised credentials to gain entry before deploying ransomware and conducting double extortion via their leak site.