Ransomware Attack on EP:Schuller by Sarcoma Group

In a recent cyberattack, the ransomware group Sarcoma has claimed responsibility for targeting EP:Schuller, a pseudonym for ElectronicPartner, through their dark web leak site. This attack has resulted in the exfiltration of 88 GB of sensitive data, significantly impacting the company's data security. The breach occurred in Austria, underscoring the global reach of Sarcoma's operations.

About EP:Schuller

EP:Schuller, operating under the umbrella of SCHULLER&Company GmbH, is a family-owned business based in Eschborn, Germany. Established in 2018, the company employs approximately 70 professionals and specializes in providing comprehensive asset life cycle solutions for engineering, procurement, and construction firms. Their services include the sale and implementation of AVEVA Engineering Suite products, development of proprietary solutions, and consulting services aimed at optimizing business processes. The company's commitment to digital transformation and its rapid growth since inception make it a notable player in the business services sector.

Vulnerabilities and Impact

Despite its innovative approach and agility, EP:Schuller’s relatively small size may have contributed to its vulnerability to cyberattacks. The company's focus on digital solutions and international expansion could have exposed it to increased cyber risks, making it an attractive target for threat actors like Sarcoma. The breach has not only compromised a substantial archive of files but also poses significant operational challenges for the company.

Sarcoma Ransomware Group

Sarcoma is a formidable ransomware group that emerged as a significant threat in the cybercrime landscape. Known for its aggressive tactics, Sarcoma employs a double extortion model, encrypting victims' data and threatening to leak it if ransom demands are not met. The group has been particularly active in targeting companies across various sectors, including healthcare, manufacturing, and finance. Sarcoma's ability to penetrate systems often involves targeting supply chains and using sophisticated tools for lateral movement and data exfiltration.

Attack Overview

The attack on EP:Schuller highlights Sarcoma's strategic approach to targeting organizations with valuable data. By compromising vendors and leveraging strong encryption methods, Sarcoma effectively increases pressure on victims to comply with ransom demands. The breach of EP:Schuller serves as a stark reminder of the ongoing challenges businesses face in safeguarding sensitive information against increasingly sophisticated cyber threats.