Netstar Australia is a technology company that offers tailored telematics solutions to Australian businesses. The company offers six GPS fleet tracking solutions that it can tailor to the business needs of its customers.
The company was listed on the dark web leak site of the Black Shrantac ransomware group, which claimed to have stolen customer data, financial data and databases, which the threat group says it will publish “soon.”
While the company has not yet published the alleged data, it posted samples which contain business documents pertaining to staff, tax, equipment customers and more. Within these are alleged names, bank account details, addresses, emails, phone numbers, contract details, insurance details and more.
Black Shrantac says it has a total of 800 gigabytes of data from the group.
Cyber Daily has reached out to Netstar Australia for more information.
Who is Black Shrantac?
Black Shrantac is a relatively new ransomware group, first detected in September 2025. In that time, the group has listed 26 victims from around the world, including the US, Turkey, Indonesia, India, Peru, Bulgaria and more, with Australia’s Netstar being the most recent victim and the group's first Australian victim.
Currently not much is known about the ransomware organisation, other than that as it did with Netstar Australia, it shares extensive data samples. The group has been focused on exfiltration and extortion so far, however according to PCRisk.com, the group's ransomware note to victims apparently notifies victims that their data has been both stolen and encrypted.
The threat actor reportedly goes as far as telling victims not to modify or restart devices as this could lead to decryption of files not working.
The group does not have an about page unlike many ransomware organisations, leaving details of its operations scarce.
Daniel Croft