This is a work in progress. While we strive for accuracy, some breach details may be incomplete or pending verification.

Victoria Racing Club

Summary

On 13 June 2024, Medusa ransomware attacked Victoria Racing Club, stealing 128.1 gigabytes including gaming machine data, financial details, customer invoices, and marketing information. Medusa demanded USD $700,000 to delete data or offered to extend deadline for $10,000/day, with data available for purchase at $700,000. VRC CEO Steve Rosich engaged experts and reported to ACSC and OAIC. VRC believed no membership data was compromised.

What Happened

Medusa ransomware gained access to VRC's network on 13 June, exfiltrating 128.1GB of business data including gaming, financial, invoicing, and marketing information.

Impact on Individuals

VRC stated no membership data was compromised. Business operational data was exposed.

Organisational Response

VRC engaged leading experts, communicated with stakeholders, and reported to ACSC and OAIC.

Verification Source: View original statement