Australian Racing Industry Ransomware Attack, 05 Jun 2025

Victorian based RISE Racing confirms Sarcoma ransomware attack

Reports indicate that 1.6GB of sensitive data was stolen, including: Banking details, financial records, participant personal information and operational data related to the racing industry

Company Statement: Racing – Cybersecurity Incident Update 30 May 2025 | Rise Racing

Source: RISE Racing confirms Sarcoma ransomware attack | CyberDaily.au

View more incidents relating to the Sporting and Recreation sector and incidents from Victoria.

Rise Racing, a key player in the Australian harness racing industry, has confirmed a ransomware attack orchestrated by the Sarcoma group. The breach has raised concerns about cybersecurity vulnerabilities in the racing sector.

Company Statement and Official Response
Rise Racing acknowledged the cyberattack and stated that data files from 2017 to 2022 were accessed. The organization has since launched an investigation in collaboration with law enforcement agencies, cybersecurity experts, and the Australian Cyber Security Centre (ACSC). Impacted individuals have been notified, and a dedicated support channel has been established to assist affected parties.

Extent of the Breach
Reports indicate that 1.6GB of sensitive data was stolen, including:
– Banking details and financial records
– Participant personal information
– Operational data related to the racing industry The exact number of affected individuals remains undisclosed.

Statements from Hackers and Ransom Demands
The Sarcoma ransomware group has claimed responsibility for the attack, publishing stolen data on their darknet leak site. The group, which emerged in October 2024, is known for its double extortion tactics, demanding ransom payments while simultaneously leaking stolen data. Screenshots of compromised files have surfaced online, reinforcing the severity of the breach.

Efforts to Reduce Incidents
Rise Racing has taken several steps to mitigate the impact:
– Immediate containment measures to secure affected systems
– Collaboration with cybersecurity specialists to assess the breach
– Notifications sent to impacted individuals with guidance on protective measures
– Ongoing forensic review to determine the full scope of the attack

Previous Breaches
There is no publicly available information indicating that Rise Racing has experienced prior cybersecurity breaches.

Industry Impact
The attack highlights cybersecurity vulnerabilities within the racing and sports industries. Similar breaches have targeted data providers and financial institutions, emphasizing the need for enhanced security protocols. The racing sector, which relies heavily on digital infrastructure, faces unique risks due to the large-scale handling of financial transactions and participant data.

Cybersecurity experts continue to monitor the situation, urging organizations to strengthen their defenses against evolving ransomware threats.