08 Aug
The Medusa ransomware group has allegedly added the French accounting firm, PANSARD & ASSOCIES, to its list of victims. According to a post on the threat actor’s data leak site, the group claims to have successfully breached the company’s network and exfiltrated a significant amount of sensitive data. PANSARD & ASSOCIES is a prominent firm based in Roubaix, France, that provides complementary services to companies, including public accounting, auditing, and strategic planning for mergers, acquisitions, and asset restructuring. The firm is also affiliated with the American Institute of Certified Public Accountants, highlighting its standing in the financial industry.
The ransomware gang alleges to have stolen 566.2 GB of data and has published a countdown timer on its blog, threatening to release the data publicly if their demands are not met. The post, dated August 6, 2025, gives the company approximately 11 days to respond. The attackers have also provided options to extend the deadline, delete the data, or download the data, each for a price, a common tactic used by ransomware groups to pressure their victims into paying the ransom.
To substantiate their claims, the attackers have released a screenshot of a file tree from what appears to be the company’s compromised systems. The folders listed suggest that the stolen information could contain highly sensitive financial and corporate data. The alleged leaked data includes directories titled:
AuditSoft
Commun
OneDrive
Scans
Users
