PK Mulyo Data Breach by ArcusMedia Ransomware Attack
Ransomware Attack on PK Mulyo by ArcusMedia
On November 21, 2024, PK Mulyo, a prominent furniture manufacturing company based in Indonesia, became the target of a ransomware attack orchestrated by the threat actor ArcusMedia. The attack resulted in a significant data leak, although the exact size of the leak has not been disclosed.
PK Mulyo Overview
PK Mulyo, officially known as PT Mulyo Furniture Manufacturers, is a well-established company in Salatiga, Central Java, Indonesia. Founded in 1965, the company has grown from a small family-run sawmill to a major player in the furniture industry, specializing in various wooden products. PK Mulyo is known for its commitment to quality craftsmanship and sustainable practices, making it a reliable exporter in the global market.
ArcusMedia Ransomware Group
ArcusMedia is a relatively new ransomware group that emerged in May 2024, gaining notoriety for its aggressive tactics and operational methods. Operating as a Ransomware-as-a-Service (RaaS), ArcusMedia allows other cybercriminals to utilize its malware for attacks, broadening its reach through an affiliate program.
Attack Details
ArcusMedia primarily gains access to victim systems through phishing emails containing malicious attachments. Once inside, they deploy custom ransomware binaries and use obfuscated scripts to execute their payloads. The group employs both regular extortion and double extortion methods, threatening to leak sensitive information unless a ransom is paid.
Company Vulnerabilities
PK Mulyo's significant market presence and financial performance within the furniture industry may have made it an attractive target for threat actors like ArcusMedia. The company's commitment to quality and sustainability, while commendable, could also make them vulnerable to attacks due to potential gaps in cybersecurity measures.
Sources
See Halcyon in action
Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!