Ransomware Group: SARCOMA

VICTIM NAME: Maselli Misure S[.]p[.]A[.] Information

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the SARCOMA Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

Maselli Misure S.p.A. Information is identified as the victim in the leak post. The page attributes the release to the threat group ‘sarcoma’ and claims that a 49 GB archive of the company’s data has been exfiltrated. The archive is described as containing files and SQL content, indicating a mix of documents and database data. The post is dated August 15, 2025; since no separate compromise date is provided, this date is treated as the post date. The leak page includes no screenshots or images, and there is no visible media on the page beyond text. There is mention that a claim URL exists, but no URL is displayed in this summary.

Maselli Misure S.p.A. Information is described as a long-standing Italian technology company that designs and manufactures optical measurement instruments for inline and laboratory quality control analysis. It has a worldwide network of sister companies, distributors, and agents, making it a leading supplier to multiple industries, including food & beverage, pharmaceutical, chemical, petrochemical, and textile sectors. The leak’s footprint lists Italy as the country; the archive is described as 49 GB and contains files and SQL data. The post indicates that the data comprises a mix of files and a SQL database dump. No images or other media are presented on the leak page, and the post does not disclose a ransom amount; readers are directed to the claim URL for more details.

From a threat intelligence perspective, this entry aligns with a typical ransomware data-exfiltration scenario: a sizable data archive (49 GB) accompanying a post by the group ‘sarcoma’ claiming responsibility for the incident. The lack of visible screenshots or media on the page reduces publicly shared artefacts, while the documented data volume suggests the potential exposure of internal documents and database content. The publish date is August 15, 2025, and no compromise date is provided in the record. The victim is Maselli Misure S.p.A. Information, a technology company with a long-standing presence and an international distribution network. No direct contact details or addresses appear in the leak page.