One of Australia’s biggest food producers has just shown how quickly a ransomware crew can bring operations to a standstill. Mackay Sugar — the country’s second-largest raw sugar producer — disclosed a cyber incident on 10 June that knocked two of its three Queensland mills offline at the peak of crushing season. On 15 June the ransomware group The Gentlemen (tracked by Microsoft as Storm-2697) claimed the attack and started a countdown to leak stolen data, as reported by Cyber Daily.

Here’s why this matters well beyond the cane fields. The Gentlemen aren’t a smash-and-grab outfit. They get in using stolen credentials and exposed internet-facing services, then move through the network like a worm — disabling Microsoft Defender and other security tools with vulnerable drivers, quietly stealing data, and only encrypting once they hold domain admin. They’ve now listed more than 500 victims. The pattern is the part to watch: one weak login or one unpatched edge device can turn into a full operational shutdown and your data on a public leak site — which for Australian businesses also triggers Privacy Act and Notifiable Data Breaches obligations.

What to do this week: enforce multi-factor authentication everywhere, especially on VPN, RDP and remote access; close or lock down internet-facing services you don’t actually need; keep offline or immutable backups and actually test a restore; segment your network so one foothold can’t reach everything; and confirm your EDR can’t be silently switched off. If you’re not certain your setup covers these, ask your IT provider today — not after an incident.

All IT Services helps Australian businesses close exactly these gaps with managed, Essential Eight–aligned cybersecurity, from endpoint protection to tested backups.