alphv attacks Unisuper S.A.

Incident Date:

July 14, 2022

World map



alphv attacks Unisuper S.A.


Unisuper S.A.




Cdad. de Guatemala, Guatemala

Guatemala, Guatemala

First Reported

July 14, 2022

UniSuper S.A. Targeted by Alphv Ransomware Group

UniSuper S.A., a prominent superannuation fund in Australia, has recently fallen victim to the ransomware group Alphv. The attack was disclosed on the group's dark web leak site. UniSuper, operating within the finance sector, is acclaimed for its superior superannuation funds, consistently delivering robust long-term investment returns.

UniSuper provides its members with a variety of services, including the consolidation of multiple super accounts, regular investment updates, and insurance options for family protection. The fund is celebrated for its commitment to responsible investment practices, earning numerous accolades for both its performance and member services.

Despite UniSuper's significant presence in the market, with a vast membership base and substantial assets under management, detailed information regarding the company's size and industry ranking remains elusive.

The specific vulnerabilities that Alphv exploited in their attack on UniSuper are not clearly outlined. Nonetheless, UniSuper's website highlights the critical importance of safeguarding personal information against online fraud, offering guidance on cybercrime prevention. This indicates that the breach could have stemmed from a lapse in UniSuper's cybersecurity defenses or through the employment of social engineering techniques by the attackers.

The Alphv ransomware group is notorious for its bold strategies, frequently targeting prominent organizations and demanding hefty ransoms. This incident with UniSuper underscores the persistent threat ransomware groups pose and the imperative for organizations to implement comprehensive cybersecurity measures to fend off such attacks.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.