Ransomware victim disclosure
← All victimsStrategic Imports
Claimed by medusalocker · listed 15 days ago
Status timeline
- Listed
May 5, 2026
- Data leaked
At a glance
- Group
- medusalocker
- Status
- Data leaked
- Country
- Australia
- Sector
- Business Services
- Listed on leak site
- May 5, 2026
About the victim
AI dossier — public-source company profileStrategic Imports is an Australian importer and distributor of automotive parts and batteries, operating under multiple retail brands including Auto Parts Now and Discount Batteries Now. The company appears to be a small-to-medium enterprise serving the Australian automotive aftermarket. No public website content was available to further characterise its scale or locations.
- Industry
- Automotive Parts & Batteries Import
Attack summary
Severity: high — Data has been published (disclosed status: data_published), indicating confirmed exfiltration from a NAS device likely containing business records, potentially including customer, financial, or operational data. Although no regulated PII at scale is explicitly confirmed, the publication of exfiltrated data from a business NAS elevates severity to high.MedusaLocker claims to have exfiltrated data from the company's QNAP NAS device (CACHEDEV1_DATA), with the disclosure status listed as data_published, indicating stolen data has been released or made available.
Data the group says was taken
AI dossier — extracted from the leak post- QNAP NAS filesystem contents (CACHEDEV1_DATA volume)
- User account data (bstuart / Brad Stuart)
- Potentially business/operational files from NAS storage
What the group claims
Australian auto parts/batteries importer. Brands: Strategic Imports, Auto Parts Now, Discount Batteries Now. User: bstuart (Brad Stuart). QNAP NAS (CACHEDEV1_DATA).
The leak post
captured from the group's siteFile Manager File Manager home page BARAAAI Data is being prepared for publication. BAPAMAI Data is being prepared for publication. BAUARAI Data is being prepared for publication. BAVADAI Data is being prepared for publication. BAVACAI Data is being prepared for publication. BAVAQAI Data is being prepared for publication. Raycolighting DEMO 3137 S Alameda Street, Los Angeles, CA 90058, USA $10 000 Organization with 2 emails extracted. Domain: raycolighting.com baralai Data is being prepared for publication. CEAGESP / Netfeirasp DEMO São Paulo, Brazil $20 000 Brazilian produce wholesale market network. Domain netfeirasp.ceagesp (CEAGESP). Also demarchibrasil.com.br accounts. Colegio María Inmaculada (CMI) DEMO Moravia, San José, Costa Rica $50000 Catholic school in Moravia, Costa Rica. Domain cmi.local / mariainmaculada.ed.cr. Servers: CMI-DC01, CMI-APP, CMI-HTTP2, main-server1/2. Académie de Montpellier / CSJM DEMO Béziers, Occitanie, France $15000 French public school network. Domain CSJM.BEZIERS, part of Académie de Montpellier (ac-montpellier.fr). Occitanie region (laregion.fr). Teacher and admin staff credentials. Palmers Relocations DEMO Victoria, Australia $63 000 Australian …
Sources
Source
Indexed 15 days agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.