Ransomware Group: MEDUSA

VICTIM NAME: Avico Spice

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the MEDUSA Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The data breach involving Avico Spice, a company specializing in agriculture and food production, has been recently reported. Situated in New York State, Avico Spice focuses on packing a range of products including spices, grated cheese, fruit and nut products, and flavorings. Notably, the company underwent a name change from its original title, A. Vitagliano & Company, which has been in operation since 1926. The compromise was discovered on December 2, 2024, following the ransomware group’s attack, known as “medusa.” Information regarding the leak indicates that the company did not have any employees or third parties affected by the incident, suggesting that no sensitive personnel data has been publicly disclosed.

The ransomware leak page features a variety of visual elements, including a screenshot showcasing the internal documents of Avico Spice. While specific details tied to sensitive company information have been redacted, the page indicates the presence of potential download links and data leaks related to the company. It is critical for stakeholders to assess the overall implications of such security breaches in the food production industry and their potential impact on operational integrity and consumer trust. Given the nature of the attack, companies in similar sectors should strengthen their data protection measures to mitigate the risks of ransomware threats in the future. The incident underscores the importance of cybersecurity in safeguarding sensitive business information across all domains.