Ransomware Forces Manual Restart at Two Mackay Sugar Mills, Disrupting Queensland Cane Processing
Ransomware encrypted Mackay Sugar systems and halted two mills, exposing IT/OT convergence risks in food processing. Company statements omit OT details while the Gentlemen group claims the victim without leaks. The incident fits a documented pattern of ransomware campaigns producing measurable harvest and export delays.
Procurement records show Mackay Sugar has not published ICS segmentation or zero-trust architecture contracts, a pattern observed across mid-tier Australian agribusinesses. Expect continued pressure on the victim to negotiate while the group maintains 500-plus claimed victims on its leak site.
Mackay Sugar: full crushing throughput returns to 80 percent of seasonal average within 21 days or the Gentlemen group publishes exfiltrated grower data by July 1.
Sources (3)
- [1]Primary Source(https://www.securityweek.com/ransomware-attack-shuts-down-mills-of-australias-second-largest-sugar-producer/)
- [2]Microsoft Threat Intelligence(https://www.microsoft.com/en-us/security/blog/2025/06/gentlemen-ransomware/)
- [3]Dragos 2024 Year in Review - Food and Beverage Sector(https://www.dragos.com/resources/reports/2024-year-in-review/)