Australian automotive manufacturer Clutch Industries has confirmed it was targeted in a cyberattack, days after the Lynx ransomware group listed the company on its darknet platform.
The incident underscores the growing cybersecurity risks facing businesses in Australia.
According to Cyber Daily’s exclusive report, Clutch Industries acknowledged the breach after noticing its mention online, along with a claim that company data had been accessed.
“Following a recent cyber incident, Clutch Industries has become aware that a third party has named the company online alongside some data,” a spokesperson for Clutch Industries told Cyber Daily, adding that the company is investigating the extent of the breach, with initial findings suggesting the impacted data is primarily internal and operational.
Clutch Industries further stated that it would notify affected individuals if personal or sensitive information was confirmed to be compromised. It also confirmed that the incident has been reported to the Australian Cyber Security Centre (ACSC).
Additionally, the company has implemented additional security measures to reduce the likelihood of further breaches.
“We understand this news may cause concern to our stakeholders, and we thank them for their ongoing support as we work to resolve this as swiftly as possible,” the spokesperson said.
Lynx, a ransomware operation that began its activities in 2024, claimed responsibility for the breach on Jan. 19. The group alleged it had obtained 350GB of Clutch Industries’ data, including employee records, business documents, and financial information. Additional materials such as shared user folders, engineering documents, and sales data were also reportedly exposed.
The leaked data appears to primarily involve operational details rather than personal information. Lynx has previously targeted other Australian businesses, including construction company Novati Constructions earlier in January.
The group employs “double extortion” tactics, encrypting victims’ data while threatening to publish it unless a ransom is paid. Since mid-2024, Lynx has claimed over 100 victims globally.
Cyber incidents continue to rank as the foremost business risk globally, according to the Allianz Risk Barometer 2025. This marks the fourth consecutive year cyber threats have topped the survey, which collected input from nearly 3,800 business leaders, risk managers, and insurance professionals in over 100 countries.
The report highlighted the increasing complexity of cyberattacks and the growing reliance on technology as key contributors to this trend. Artificial intelligence (AI) adoption has introduced new vulnerabilities, according to Rishi Baviskar, Allianz Commercial’s global head of cyber risk consulting.
Amid heightened cybersecurity concerns, Australian businesses are expanding their use of cyber insurance, a study by Arctic Wolf has revealed.
The survey found that 43% of organisations in the Australia-New Zealand (ANZ) region currently hold cyber insurance policies, while 57% are considering incorporating such coverage into their risk management strategies.
Of those insured, 61% reported having stand-alone cyber policies, reflecting growing interest in tailored coverage options.
However, businesses expressed moderate confidence in their existing policies, rating their coverage adequacy at an average of 6.8 out of 10. Some respondents pointed to gaps in coverage as a key challenge.
