Ransomware Group: SARCOMA

VICTIM NAME: Sheyenne Tooling & Manufacturing

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the SARCOMA Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

Sheyenne Tooling & Manufacturing, a precision component manufacturer based in Cooperstown, North Dakota, faces a significant data breach. This family-owned business, established in 1977, has built a reputation for high-quality manufacturing, particularly for clients in the agriculture sector, including well-known brands such as Bobcat and John Deere. The leak claims to contain a substantial data archive, with a total size of 134 GB, which reportedly includes various files and SQL databases. The date of data compromise remains unspecified, but the issue was discovered on January 10, 2025. The presence of confidential documents raises concerns about potential impacts on the company’s operations and customer relationships.

The cyber incident is attributed to the group named “sarcoma,” potentially indicating the involvement of a specific ransomware group in the attack. As of the current report, there are no reported impacts on employees, third-party affiliations, or customer data leaks according to the infostealer information provided. The absence of screenshots or additional media content implies that the focus of the breach is primarily on data rather than sensitive visual information. Organizations within the manufacturing sector, especially those dealing with agricultural equipment, should enhance their cybersecurity measures in response to such incidents, as these breaches can result in significant operational and reputational damage.