Skip to content
Ransomware News

Ransomware Group thegentlemen Hits: Sunspray Food

Admin
HookPhish team
Target organization Sunspray Food sunspray.co.za Agriculture and Food Production

Summary

In the latest cybersecurity news, Sunspray Food — a company operating in the ZA — has fallen victim to a ransomware attack conducted by the group thegentlemen. This data breach, discovered on 2026-04-19 17:06:35.045494, underscores the increasing need for proactive cybersecurity defenses as we continue through 2026.

Incident Report

Attribute Information
Target Organization Sunspray Food
Threat Group thegentlemen
Summary sunspray.co.za zoominfo.com/c/sunspray-food-ingredients-ltd/425184083 Sunspray Solutions (Pty) Ltd, founded in 1944 and headquartered in Johannesburg, South Africa, is the country’s largest independent manufacturer of spray-dried food ingredients. The company operates 10 spray dryers across two manufacturing sites (Industria, Johannesburg and Bronkhorstspruit, Gauteng), producing hundreds of products including caramel powders, fat powders, fruit & vegetable powders, creamers, egg powders, and cheese powders. In 2023, Israeli company Turpaz Industries acquired a 55% controlling stake, enabling Sunspray’s geographic and portfolio expansion
Date of Breach 2026-03-26 09:22:40.000000
Discovery Date 2026-04-19 17:06:35.045494
Region ZA
Target Domain sunspray.co.za
Business Sector Agriculture and Food Production

 

Recommended Security Actions

In response to increasing cyber threats, it’s critical to protect your organization with proactive security measures. HookPhish provides enterprise-grade solutions designed to reduce your risk of future attacks:

Protect your organization before it becomes the next headline. Explore HookPhish.

How HookPhish Helps You Stay Ahead

Don’t wait for a breach to take action — stay informed and take control of your cybersecurity posture today.

You can also check if your organization’s data has been exposed using our free Data Breach Checker.

Disclaimer

HookPhish does not engage in the exfiltration, downloading, taking, hosting, viewing, reposting, or disclosure of any stolen information. All breach data reported here is sourced from publicly available threat intelligence feeds for awareness purposes only.

Related articles

Security training designed for people.

See how HookPhish turns phishing simulation, training and threat monitoring into measurable human-risk reduction.

Book a demo Explore solutions