Arrabawn Co-op Targeted by Hunters International: Ransomware Attack

Incident Date:

May 28, 2024

World map



Arrabawn Co-op Targeted by Hunters International: Ransomware Attack


Arrabawn Co-operative Society Ltd


Hunters International


Nenagh, Ireland

, Ireland

First Reported

May 28, 2024

Ransomware Attack on Arrabawn Co-op by Hunters International

Company Profile

Arrabawn Co-op, an Irish company operating in the agriculture sector, was recently targeted in a ransomware attack by Hunters International. As a dairy cooperative based in Ireland, Arrabawn works with over 1,000 dairy farmers to collect and process milk, producing a variety of dairy products such as milk, butter, cheese, and cream. The company is renowned for its commitment to sustainability and high-quality products, generating an annual turnover of over €270 million. Employing over 400 people, Arrabawn has a dedicated staff of 338 employees.

Ransomware Attack Overview

Hunters International, a notorious ransomware group, claimed responsibility for the attack on Arrabawn Co-op. They reported stealing 385.2GB (364,595 files) of data from the company. This attack compromised the company’s systems, potentially exposing sensitive information and disrupting their operations.

Ransomware Group: Hunters International

Hunters International is a ransomware group that focuses on stealing data rather than encrypting it. Known for customizing their ransomware to enhance simplicity and efficiency, they have become a significant threat in the cyber landscape. Their targeting is diverse, spanning various sectors worldwide, including healthcare, automotive, manufacturing, logistics, financial, educational, and food industries.

Company Vulnerabilities

Given Arrabawn Co-op's prominence in the dairy industry, it may have been targeted by Hunters International due to the valuable data they possess. The company's large size, extensive network of dairy farmers, and substantial revenue make it an attractive target for cybercriminals aiming to steal sensitive information or disrupt operations for financial gain.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.