Ransomware Group: AKIRA

VICTIM NAME: McKenzie Commercial Contractors

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the AKIRA Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page details a cyberattack targeting McKenzie Commercial Contractors, a construction firm known for delivering high-quality commercial construction services. The attack, which was discovered on May 29, 2025, involves the extraction and potential publication of approximately 42 GB of sensitive corporate data. This includes employee personal information such as dates of birth, passports, addresses, phone numbers, and emails, along with confidential financial and client data, project documentation, contracts, NDAs, and other sensitive business documents. The leak suggests a significant breach of private and proprietary information, potentially impacting the company’s operations and trustworthiness.

The leak page indicates that the cybercriminal group responsible is identified as “akira.” The data exposed appears to be intended for public release or sale, posing severe risks to affected individuals and the company’s integrity. The breach may lead to identity theft, financial fraud, and legal complications for the company and its employees. The page also references the planned upload of the compromised data, emphasizing the severity of the incident. No specific download links or images are provided on the leak site; however, the mention of leaked data underscores the importance of robust cybersecurity measures to prevent such attacks. The incident highlights the vulnerabilities within the company’s cybersecurity posture, emphasizing the critical need for ongoing security assessments and data protection strategies.