RISE Racing Confirms Ransomware Attack by Sarcoma

Published:

spot_img

RISE Racing Under Siege: A Cybersecurity Breach Exposed

Overview of the Incident

RISE Racing, a prominent digital service provider for harness racing in Australia, has recently confirmed it has become a target of a ransomware attack. The Sarcoma ransomware group has listed the company on its leak site, revealing that sensitive data, including banking information, has been compromised.

Details of the Breach

On June 5, the Sarcoma gang announced their breach of RISE Racing, claiming to have stolen about 1.6 gigabytes of sensitive data. Alongside this claim, they released several documents as proof and provided a .Zip file containing the complete dataset. This alarming incident highlights the growing threat posed by cybercriminals and the vulnerabilities present even in established industries like sports and racing.

Response from RISE Racing

In a statement given to Cyber Daily, a spokesperson for RISE Racing acknowledged the cyber incident and confirmed that specific data files dating from 2017 to 2022 were accessed during the breach. Due to the nature of the breach, the company is in the process of notifying all affected individuals to uphold their compliance obligations.

The spokesperson further emphasized, “Our immediate investigation has revealed that some of these files contained banking information." RISE Racing is taking the situation seriously and has engaged law enforcement agencies along with cybersecurity experts, including the Australian Cyber Security Centre (ACSC) and the Office of the Australian Information Commissioner (OAIC).

Emphasis on Privacy and Security

RISE Racing has reassured its users that their privacy is paramount. The company is actively communicating with its participants about managing the ongoing situation and advising them on vigilance against potential fallout from the breach. They have also brought in third-party cybersecurity experts to mitigate the risks and investigate the situation thoroughly.

Timeline of Discovery

The breach was initially detected on May 12, signaling an urgent response to the security lapse. Understanding the timeline is crucial for stakeholders in the harness racing industry, as it directly impacts their operations, privacy, and security.

Background on the Sarcoma Ransomware Group

The Sarcoma group operates a ransomware-as-a-service model, selling their malware and profiting from ransom payments. With roots believed to be in Eastern Europe, the gang utilizes double extortion tactics: they not only encrypt the victim’s data but also steal it, threatening to publish the information online if their ransom demands aren’t met.

Since their emergence in October 2024, Sarcoma has claimed a total of 109 victims, with RISE Racing being the latest in a series of Australian targets, following the TMA Group of Companies, which was targeted as recently as April 14.

RISE Racing’s Role in the Industry

Founded in Flemington, Victoria, RISE Racing serves as the data and systems provider for the Australian harness racing community. They are responsible for maintaining a centralized data hub and administering the official website, www.harness.org.au, along with offering various software services tailored to the needs of the racing industry. This incident not only disrupts their operations but also raises questions about the security measures currently in place to protect sensitive information in the digital age.

Conclusion

As the investigation continues, the RISE Racing cyber breach serves as a stark reminder of the potential vulnerabilities faced by organizations, regardless of their industry. The aftermath of this attack will inevitably shape the future of cybersecurity protocols within the racing community and beyond. Stakeholders must remain vigilant and committed to enhancing their defenses against increasingly sophisticated cyber threats.

spot_img

Related articles

Recent articles

NSU Launches Cybersecurity Center to Enhance Research and Workforce Development in Bangladesh

North South University (NSU) has inaugurated its Cybersecurity Center to advance research, develop skilled professionals, and strengthen Bangladesh's resilience against emerging cyber threats. This...

Siemens ROX II Switches Vulnerable: Update to Firmware V2.17.1 to Mitigate CVE-2025-40948, CVE-2025-40947, and CVE-2025-40949 Exploits

Siemens has issued an advisory regarding three critical zero-day vulnerabilities (CVE-2025-40948, CVE-2025-40947, and CVE-2025-40949) affecting its ROX II operational technology (OT) switches. These vulnerabilities...

UK Regulator Launches Investigation into TikTok Age Verification Amid Strengthened Child Safety Measures

UK Regulator Launches Investigation into TikTok Age Verification Amid Strengthened Child Safety Measures The UK's communications regulator, Ofcom, has initiated a formal investigation into TikTok's...

Legacy Systems, Real-World Risks: Navigating the Challenges of OT Security

Legacy Systems, Real-World Risks: Navigating the Challenges of OT Security Operational Technology (OT) security presents unique challenges that differ significantly from traditional Information Technology (IT)...