Heidelberg Golf Club reportedly targeted by Kairos ransomware group

The Kairos ransomware group has claimed to have successfully hacked the Heidelberg Golf Club, located in the Melbourne suburb of the same name. They have shared documents and personal information that appear to have been stolen from the club. Kairos typically refrains from editorialising about its operations, opting instead to share revenue details obtained from web searches alongside the sectors of its victims. The gang does not disclose ransom details but has stated that data will be published within seven days.

Kairos claims to have stolen 24.6 gigabytes of data and has already posted several documents to substantiate the success of the hack. The information shared on the darknet includes staff salary details, a scan of a driver’s licence, financial data, and various pieces of correspondence between the club and its members, alleging behaviour that contradicts the club’s bylaws. Cyber Daily has reached out to Heidelberg Golf Club for comment but has yet to receive a response.

According to the threat intelligence firm Cyjax, Kairos is active on several Russian-language hacking forums and does not appear to be linked to other hacking groups. The group provides some information about its operations on its leak site. Victims are initially given seven days to respond to Kairos’s demands, and once that deadline passes, the gang publishes the stolen data.