Brokk Hacked by Play Ransomware Gang, Data Threatened with Leak

Brokk Hacked by Play Ransomware Gang, Data Threatened with Leak

First seen 4 Apr 2026, 01:59 UTC CybernewsScworld 82% similarity 58.0

Article Content

Browse articles
ThreatCluster

Brokk, a Swedish manufacturer of remote-controlled demolition machinery, was allegedly hacked by the Play ransomware gang, which is linked to Russia. The gang has threatened to leak a 4GB dataset containing sensitive internal corporate information if their ransom demands are not met. The stolen data reportedly includes financial details, budgets, payroll, IDs, taxes, and client files. Cybernews reported that the legitimacy of the claims has not been independently verified, but the potential reputational damage to Brokk is significant. The Play ransomware gang has been active since 2023, claiming over 1,100 victims, with recent targets including Jamco Aerospace. Brokk has not yet responded to inquiries regarding the breach. The incident highlights the ongoing threat posed by ransomware operations and the risks associated with data breaches.

Key Points: • Brokk was allegedly hacked by the Russia-linked Play ransomware gang. • A 4GB dataset containing sensitive corporate data has been threatened with public release. • The Play ransomware gang has claimed over 1,100 victims since its emergence.

ThreatCluster AI

Timeline

2026-04-01
Play ransomware gang claims responsibility for the attack on Brokk.
2026-04-01
Play releases a 4GB dataset of allegedly stolen data.
2026-04-02
Cybernews reports on the breach and the gang's threats.
2026-04-03
Scworld publishes a brief on the Brokk hacking incident.

Community

Browse all →