Natures Organics
| Primary URL | Location | Industry | naturesorganics[.]com[.]au |
Country
Australia
|
Manufacturing
|
|---|
Profile
Natures Organics, operating under the alias Natures Organics, is an Australian manufacturer with its headquarters located in Australia. The organisation’s core activities involve manufacturing, though specific product lines or service offerings are not detailed in the available information. As an Australian-based entity, it maintains internal operations that include employee records, financial transactions, and communications typical of a manufacturing firm.
On 30 January 2025, Natures Organics suffered a ransomware attack carried out by the Medusa group, which exfiltrated approximately 143 gigabytes of sensitive data. The compromised information included employee passport and driver’s licence scans, bank transaction histories, internal communications, and payroll details. The attackers demanded a ransom of $150,000 for the deletion or non‑publication of the data, offering an option to extend the deadline for an additional $10,000. The company publicly confirmed the breach, notified affected staff and relevant authorities, and emphasized that no client data was compromised in the incident.
Medusa operates as a ransomware‑as‑a‑service outfit, employing legitimate tools to evade detection and to disable security defenses such as Microsoft Defender. The group establishes persistence within victim networks and has previously targeted other Australian organisations using comparable tactics. Their methodology reflects a broader trend of cybercriminals leveraging trusted system utilities to conduct stealthy and effective attacks.
In response to the attack, Natures Organics followed standard breach‑notification procedures, engaging with law enforcement and informing its workforce about the exposure of personal data. The organisation’s statement that client information remained unaffected highlights a distinction between internal employee data and external customer records within its data landscape. The incident underscores the ongoing threat posed by ransomware groups to Australian manufacturers and the importance of robust defensive measures.