In the latest cybersecurity news, Cropwise (Syngenta Group) — a company operating in the CH — has fallen victim to a ransomware attack conducted by the group shadowbyt3$. This data breach, discovered on 2026-06-02T04:20:12.877865+00:00, underscores the increasing need for proactive cybersecurity defenses as we continue through 2025.
In response to increasing cyber threats, it’s critical to protect your organization with proactive security measures. HookPhish provides enterprise-grade solutions designed to reduce your risk of future attacks:
- Phishing Simulation – Test and improve employee readiness with realistic, controlled phishing campaigns.
- Cybersecurity Awareness Training – Educate your team to recognize and respond to common attack tactics.
- Data Breach Monitoring – Get real-time alerts if your organization’s data appears in public or dark web breaches.
- Phishing Detection and Response – Detect, investigate, and neutralize phishing threats before they cause damage.
Protect your organization before it becomes the next headline. Explore HookPhish.
Incident Report
| Attribute | Information |
|---|---|
| Target Organization | Cropwise (Syngenta Group) |
| Threat Group | shadowbyt3$ |
| Summary | We have breached you and gained access to the following portals: https://operations.cropwise.com/d/users/sign_in https://accounts.cropwise.com/signin proof: https://mega.nz/folder/25hkSLgY#ELjJaFie-TfES9Z_47KFZA company url: https://operations.cropwise.com/ We are ShadowByt3$ a Extortion as a service group. You have been breached and 10.4MB was stolen. It may seem small but it can affect you every way imaginable. Don’t believe us the following below was stolen: 👤 User Identities and Access Credentials – Account Directory Data: Full names, corporate email addresses, and phone numbers of registered agronomists, regional farm managers, and field staff. – Authentication Metadata: Encrypted password hashes, session tokens, or configured API keys utilized to link automated machinery data feeds to the web dashboard. 🚜 Precision Agronomy and Farm Metrics – Geospatial Boundaries: High-resolution GIS boundary files detailing the exact shapes, coordinates, and property lines of privately owned or leased commercial fields. – Vegetation and Scouting Analyses: Historical NDVI satellite imagery datasets [CWO: Tools for effective monitoring of your crops’ condition syngenta.co.za], past growth tracking matrices, field problem zone flags, and yield prediction models. – Operational Treatment Records: Deep operational histories documenting exact pesticide or fertilizer applications, crop types, seeding timelines, and harvesting schedules. 🚛 Telematics and Fleet Diagnostics – Machinery Tracking Logs: Real-time and archived GPS location paths generated by connected tractors, combines, or sprayers. These logs map out the specific work shifts, operational speeds, and field locations of individual machine drivers. If you contact us then we won’t leak it and show proof that we deleted it. Also we will tell you how to secure your company so you don’t get breached again. We are giving you 48 hours (approx 3 days) to contact us which would be by June 4th 2026. If you fail to reach out to us we will maximize damage by giving it to news outlets, swatting victims, and we will email everyone affected and you would be the next headline. All you have to do is pay 1 million in bitcoin or monero and it goes away. |
| Date of Breach | 2026-06-02T04:20:11.382939+00:00 |
| Discovery Date | 2026-06-02T04:20:12.877865+00:00 |
| Region | CH |
| Target Domain | None |
| Business Sector | Agriculture and Food Production |
Don’t wait for a breach to take action — stay informed and take control of your cybersecurity posture today.
You can also check if your organization’s data has been exposed using our free Data Breach Checker.
Disclaimer: HookPhish does not engage in the exfiltration, downloading, taking, hosting, viewing, reposting, or disclosure of any stolen information. All breach data reported here is sourced from publicly available threat intelligence feeds for awareness purposes only.
