Ransomware Group: SARCOMA

VICTIM NAME: Machu Picchu Foods

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the SARCOMA Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak pertains to Machu Picchu Foods, a prominent Peruvian company specializing in the production of single-origin cocoa and premium chocolates. The breach was discovered on June 24, 2025, and the incident involves a significant data compromise with a leak size of approximately 68 gigabytes. The compromised archive includes a variety of files that may contain internal documents, operational data, and other sensitive information. The leak’s details suggest that the attacker might be targeting the company’s proprietary information and intellectual property, potentially affecting their reputation and operational integrity.

As an organization involved in sustainable and organic food production, Machu Picchu Foods emphasizes quality and environmental commitment. The leak could pose risks to their brand, especially if proprietary recipes, supplier data, or strategic plans are exposed. The leaked archive may include screenshots of internal documents, which could reveal confidential business processes or strategies. While no specific PII or customer data appears to be summarized, the leak underscores the importance of cybersecurity vigilance for companies operating in the agricultural and food production sector. The incident highlights the urgent need for robust security measures to prevent future breaches and protect sensitive operational data.