In a report on July 12, Red Packet Security, a website that tracks cybersecurity compromises published a notice that Hive Ransomware has posted files exfiltrated in the attack reported by the Massy Group in April 2022.
According a post on the Hive dark website, the ransomware group executed encryption on data on the company’s servers at 9:37am on April 28. Sources suggest that as much as 215GB of data may have been exfiltrated from the company before it was encrypted.
The exfiltration consisted of a range of Personally Identifiable Information related to both customers and company staff along with business documents. These files are available for download on the dark web.
Updated, October 18, 2022: A Jamaican cybersecurity consultant revealed details of the data dump in a tweet thread and LinkedIn post in the wake of reporting on the matter in the Jamaican Press…
87,550 folders and 704,047 files.
Finance (Accounts Receivable, Accounts Payable, Budgets, Banking, Financial Statements, Internal Audits)
HR (Staff Photos, Surveys, Staff Listing, Job Descriptions,, Events, Claims, All the usual HR stuff, ALOT of personal)
Operations (Monthly Payroll up to April 2022, Store Audits, Store Performance, Budgets)
Property Management (Strategic Management documents)
Client Backups (Backups of data on end-users’ systems)
copies of people’s passports
Dennis described the public release as “the largest Caribbean data breach dump to date.”