Ransomware victim disclosure
← All victimsCARSTAR Business Group
Claimed by Sarcoma · listed 1 year ago
Status timeline
- ListedJul 14, 2025
- Data leakeddate unknown
At a glance
- Group
- Sarcoma
- Status
- Data leaked
- Country
- United States
- Sector
- Consumer Services
- Listed on leak site
- Jul 14, 2025
- Data size
- 65 GB
About the victim
AI dossier — public-source company profileCARSTAR Business Group is an automotive service and collision repair company headquartered in Ancaster, Ontario, Canada. The company operates with 50–99 employees and generates $5M–10M in annual revenue.
- Industry
- Automotive Service & Collision Repair
- Address
- Ancaster, Ontario, Canada
- Employees
- 50-99
Attack summary
Severity: medium — Confirmed exfiltration of 65 GB of business data with published archive; no regulatory/PII-specific claims stated, but scale and automotive service context suggest operational and customer records at risk.The Sarcoma group claims to have exfiltrated 65 GB of data from CARSTAR Business Group. The group has published the data archive without stating specific operational encryption or ransom demands.
Data the group says was taken
AI dossier — extracted from the leak post- business files
- company records
What the group claims
CARSTAR Business Group CARSTAR Business Group is a company that operates in the Automotive Service & Collision Repair industry. It employs 50to99 people and has 5Mto10M of revenue. The company is headquartered in Ancaster, Ontario, Canada.Geo: Canada - Leak size: 65 GB Archive - Contains: Files
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

