Powered by MOMENTUMMEDIA
For breaking news and daily updates, subscribe to our newsletter

Exclusive: Australian equipment hire firm allegedly breached by DragonForce

Threat actors have claimed a cyber attack on an Australian industry equipment provider, saying they have exfiltrated data impacting the business and its clients.

Tue, 14 Jul 2026
Exclusive: Australian equipment hire firm allegedly breached by DragonForce

Access Group International is a privately owned provider of material handling, access, and construction equipment. It’s an international business headquartered in Canning Vale, Western Australia, that also services regions worldwide, including the Middle East.

Access Group International was listed on the dark web by the infamous DragonForce ransomware gang, which claimed to have stolen 42.12 gigabytes of data.

While the threat actor did not outline the contents of the allegedly stolen data, it did share a number of screenshots, containing credit applications, tax invoices, and a spreadsheet containing account names and purchase details, including item number, item type, contract information, hire dates, estimated return dates, delivery dates, site locations, and more.

 
 

The threat actor also claimed that the data had since been “publicated”, but any attempts to look at the allegedly stolen data come back with a message that says “client not found”.

Cyber Daily has reached out to Access Group International for more information.

Who is DragonForce?

DragonForce runs a ransomware-as-a-service operation in which affiliates can hire the gang’s ransomware platform in return for a cut of any profits. The gang passes on up to 80 per cent of ransom payments and commonly advertises its services on Russian-language hacking forums.

The group is believed to have links to the LockBit ransomware operation and engages in double-extortion tactics. It has claimed 599 victims to date, over double what it had in just September last year.

Most recently, DragonForce claimed a cyber attack on Victoria-based logistics firm QLS Group.

The group claimed to have exfiltrated 554.65 gigabytes of data, and while it did not disclose the nature of the incident, it provided a small sample of allegedly stolen data, which included confidential documentation, contract information, an incident report, and more.

Cyber Daily understands that the QLS incident was an internal one, which was resolved at the time of discovery, and the firm has no ongoing concerns.

Cyber DailyWant to see more stories from trusted news sources?
Make Cyber Daily a preferred news source on Google.
Tags:

Daniel Croft

Born in the heart of Western Sydney, Daniel Croft is a passionate journalist with an understanding for and experience writing in the technology space. Having studied at Macquarie University, he joined Momentum Media in 2022, writing across a number of publications including Australian Aviation, Cyber Security Connect and Defence Connect. Outside of writing, Daniel has a keen interest in music, and spends his time playing in bands around Sydney.