Login
iscover
Share this article on:
Powered by
MOMENTUM
MEDIA
Powered by MOMENTUMMEDIA
The D4RK4RMY ransomware group claims to have stolen 85 gigabytes of data from a Sydney-based investment firm.
The D4RK4RMY ransomware gang has listed Australian investment firm Magellan Financial Group as a victim on its darknet leak site.
The hackers claim to have stolen 85 gigabytes of data, according to the group’s 7 August leak post, though they have said little else about the incident. The group has not shared any details of its ransom demand, nor the deadline for payment.
Similarly, D4RK4RMY has not shared any sample data. Magellan is aware of the claims and is investigating the incident.
“On 8 August 2025, Magellan Financial Group (‘MFG’) became aware of claims suggesting a potential cyber security incident involving our data,” a Magellan spokesperson told Cyber Daily.
“Our IT security team is conducting a thorough investigation to determine the validity of these claims.
“MFG has activated its dedicated response team. Our systems remain fully operational, and we would like to assure our clients that we are taking all appropriate steps in response to this incident.
“Our clients’ trust and the security of their information remain our highest priority. We will provide further updates as more information becomes available.”
D4RK4RMY is a relatively new ransomware group. Magellan is one of only 15 victims shared on the group’s leak site since 7 July, though it is the only Australian one. The group describes itself as a “relentless hacking collective that exposes the recklessness of companies failing to protect their most critical assets: customer data and intellectual property”.
Like many ransomware operators, D4RK4RMY considers its criminal actions to be the fault of its victims for being vulnerable to attack. The group also claims not to target hospitals or non-profit organisations, and offers “hacker for hire” services alongside its own target activity.
The Magellan Financial Group is headquartered in Sydney. According to the company’s website, as of June 2025, it managed $39 billion in global equity and infrastructure strategies. The firm also owns Airlie Funds Management and has a strategic stake in Vinva Holdings Limited, the parent company of Vinva Investment Management.
David Hollingworth has been writing about technology for over 20 years, and has worked for a range of print and online titles in his career. He is enjoying getting to grips with cyber security, especially when it lets him talk about Lego.
Be the first to hear the latest developments in the cyber industry.
