Ransomware Group SafePay Targets Australian Legal Tech Firm BarNet, Leaks Sensitive Data A ransomware group known as SafePay has claimed responsibility for a cyberattack on BarNet, an Australian communications management firm specializing in legal services, including its BarNet Jade case tracking platform. The group listed BarNet on its dark web leak site last week and has since released stolen data, which includes financial statements, legal documents, contract files, passport scans, CVs, and personal records—primarily belonging to a single individual. Exposed details encompass names, birth dates, email addresses, phone numbers, banking information, car registration, and employment history. SafePay, a relatively new ransomware operation first observed in October 2024, has targeted businesses across Australia, the U.S., the U.K., Italy, New Zealand, and several other countries. Unlike many ransomware groups, SafePay claims it does not operate as a ransomware-as-a-service (RaaS) model. Its recent victims include BECKS Group Australia, a high-end jeweler, which confirmed a breach last week after SafePay threatened to leak stolen data. BECKS stated it had notified authorities, including the Australian Cyber Security Centre (ACSC) and the Office of the Australian Information Commissioner (OAIC), and acknowledged that some data was likely compromised. BarNet has not yet publicly responded to the incident. The attack highlights the growing threat posed by emerging ransomware groups to specialized service providers handling sensitive legal and financial data.