The Map is Being Updated with Attacks

Explore the Halcyon Attacks Lookout

The Halcyon Attacks Lookout (or ‘HAL’ for short) is a recent ransomware attacks watchtower, built to provide tracking of attacks, groups and their victims. Given threat actors' overarching, lucrative success from ransomware attacks, they’ve become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

Recent Attack News

Visit All Attack News
NEW
November 18, 2024

Oklahoma Medical Center Ransomware Attack Exposes Data for 133,000

The attack highlights a disturbing trend: cybercriminals now aim not only to paralyze healthcare systems but also to weaponize stolen data to extort individuals and institutions...

Read More
NEW
November 18, 2024

Ransomware on the Move: Helldown, Lynx, Medusa, RansomHub

Halcyon publishes a quarterly RaaS and data extortion group reference guide, Power Rankings: Ransomware Malicious Quartile. Here's the #ransomware gangs on the move last week: Helldown, Lynx, Medusa, and RansomHub...

Read More
NEW
November 18, 2024

Embargo Ransomware Group Disrupts American Associated Pharmacies

Embargo deploys MDeployer, a specialized loader, and MS4Killer, an endpoint detection and response (EDR) killer, allowing the attackers to bypass defenses with remarkable precision...

Read More
NEW
November 18, 2024

RansomHub Claims Attack on Government of Mexico

Strategic target selection has been a hallmark of RansomHub’s approach, initially focusing on healthcare due to the sensitive and lucrative nature of its data...

Read More
NEW
November 18, 2024

INC Ransomware Gang Infiltrates Hungarian Defense Network

Despite their criminal activities, INC Ransom brands itself as a "moral agent," claiming to help victims identify cybersecurity weaknesses, a narrative that adds nuance to their motives...

Read More
NEW
November 13, 2024

January Ransomware Attack on BBS Financial Included Data Breach

Targeted organizations are not only victimized by ransomware operators, they may be revictimized by an over-zealous legal and regulatory environment...

Read More

Explore the Ransomware Attacks Database

Dive into each Attack to read the full incident details. View Attacks by Group, Industry, and Country, using filters.

Attacks by Industry
Attacks by Groups
Attacks by Locations
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Tag
Showing 0 of 100
Healthcare ServicesHealthcare ServicesHealthcare ServicesHealthcare Services
Colonial Behavioral Health Hit by Qilin Ransomware Attack
Read more
Colonial Behavioral Health Hit by Qilin Ransomware Attack
Read More
Date
November 5, 2024
Ransomware group
Qilin
Location

Williamsburg, Virginia

Williamsburg, USA

USA
Industry
Healthcare Services
Victim
Colonial Behavioral Health
Hospitals & Physicians ClinicsHospitals & Physicians ClinicsHospitals & Physicians ClinicsHospitals & Physicians Clinics
RansomHub Targets Northwest Health Porter in Major Data Breach
Read more
RansomHub Targets Northwest Health Porter in Major Data Breach
Read More
Date
November 5, 2024
Ransomware group
Ransomhub
Location

Valparaiso, Indiana

Valparaiso, USA

USA
Industry
Hospitals & Physicians Clinics
Victim
Northwest Health Porter
ConstructionConstructionConstructionConstruction
RansomHub Targets Pacific Glazing Contractors in Major Attack
Read more
RansomHub Targets Pacific Glazing Contractors in Major Attack
Read More
Date
November 5, 2024
Ransomware group
Ransomhub
Location

Hollister, California

Hollister, USA

USA
Industry
Construction
Victim
Pacific Glazing Contractors
ConstructionConstructionConstructionConstruction
RansomHub Targets Goodline in Major Ransomware Attack
Read more
RansomHub Targets Goodline in Major Ransomware Attack
Read More
Date
November 4, 2024
Ransomware group
Ransomhub
Location

Perth,

Perth, Australia

Australia
Industry
Construction
Victim
Goodline
Consumer ServicesConsumer ServicesConsumer ServicesConsumer Services
Ransomware Hits Air Specialists by Hunters International Group
Read more
Ransomware Hits Air Specialists by Hunters International Group
Read More
Date
November 4, 2024
Ransomware group
Hunters International
Location

Quincy, Illinois

Quincy, USA

USA
Industry
Consumer Services
Victim
Air Specialists Heating & Air Conditioning
SoftwareSoftwareSoftwareSoftware
RansomHub Targets MaxData Sistemas in Major Ransomware Attack
Read more
RansomHub Targets MaxData Sistemas in Major Ransomware Attack
Read More
Date
November 4, 2024
Ransomware group
Ransomhub
Location

Goiânia,

Goiânia, Brazil

Brazil
Industry
Software
Victim
MaxData Sistemas
GovernmentGovernmentGovernmentGovernment
Ransomware Breach: Hunters International Hits EEAS
Read more
Ransomware Breach: Hunters International Hits EEAS
Read More
Date
November 4, 2024
Ransomware group
Hunters International
Location

Bruxelles,

Bruxelles, Belgium

Belgium
Industry
Government
Victim
European External Action Service (EEAS)
AgricultureAgricultureAgricultureAgriculture
RansomHub Ransomware Hits Kenana Sugar Company in Sudan
Read more
RansomHub Ransomware Hits Kenana Sugar Company in Sudan
Read More
Date
November 4, 2024
Ransomware group
Ransomhub
Location

Sifeiya,

Sifeiya, Sudan

Sudan
Industry
Agriculture
Victim
Kenana Sugar
ConstructionConstructionConstructionConstruction
RansomHub Ransomware Hits Red Phoenix Construction Firm
Read more
RansomHub Ransomware Hits Red Phoenix Construction Firm
Read More
Date
November 4, 2024
Ransomware group
Ransomhub
Location

Topsfield, Massachusetts

Topsfield, USA

USA
Industry
Construction
Victim
Red Phoenix Construction
ConstructionConstructionConstructionConstruction
RansomHub Ransomware Breach Exposes Kriger Construction Data
Read more
RansomHub Ransomware Breach Exposes Kriger Construction Data
Read More
Date
November 4, 2024
Ransomware group
Ransomhub
Location

Scranton, Pennsylvania

Scranton, USA

USA
Industry
Construction
Victim
Kriger Construction
Energy, Utilities & WasteEnergy, Utilities & WasteEnergy, Utilities & WasteEnergy, Utilities & Waste
RansomHub Ransomware Hits Fullford Electric in Major Data Breach
Read more
RansomHub Ransomware Hits Fullford Electric in Major Data Breach
Read More
Date
November 4, 2024
Ransomware group
Ransomhub
Location

Fairbanks, Alaska

Fairbanks, USA

USA
Industry
Energy, Utilities & Waste
Victim
Fullord Electric Inc.
ManufacturingManufacturingManufacturingManufacturing
RansomHub Ransomware Hits CASE Construction: Key Insights
Read more
RansomHub Ransomware Hits CASE Construction: Key Insights
Read More
Date
November 4, 2024
Ransomware group
Ransomhub
Location

Edinburgh, Indiana

Edinburgh, USA

USA
Industry
Manufacturing
Victim
CASE Construction
ManufacturingManufacturingManufacturingManufacturing
RansomHub Ransomware Hits Schweiker GmbH: Data Breach Details
Read more
RansomHub Ransomware Hits Schweiker GmbH: Data Breach Details
Read More
Date
November 4, 2024
Ransomware group
Ransomhub
Location

Grünbach,

Grünbach, Germany

Germany
Industry
Manufacturing
Victim
Schweiker GmbH
ConstructionConstructionConstructionConstruction
RansomHub Ransomware Hits CSU Inc., Exposes 198GB of Data
Read more
RansomHub Ransomware Hits CSU Inc., Exposes 198GB of Data
Read More
Date
November 4, 2024
Ransomware group
Ransomhub
Location

Plainfield, Indiana

Plainfield, USA

USA
Industry
Construction
Victim
CSU, Inc.
Law Firms & Legal ServicesLaw Firms & Legal ServicesLaw Firms & Legal ServicesLaw Firms & Legal Services
BianLian Ransomware Hits Russell Law Firm in Data Breach
Read more
BianLian Ransomware Hits Russell Law Firm in Data Breach
Read More
Date
November 3, 2024
Ransomware group
Bianlian
Location

Baton Rouge, Louisiana

Baton Rouge, USA

USA
Industry
Law Firms & Legal Services
Victim
Russell Law Firm, LLC
Healthcare ServicesHealthcare ServicesHealthcare ServicesHealthcare Services
Guardian Healthcare Hit by Stormous Ransomware Attack
Read more
Guardian Healthcare Hit by Stormous Ransomware Attack
Read More
Date
November 3, 2024
Ransomware group
Stormous
Location

Metairie, Louisiana

Metairie, USA

USA
Industry
Healthcare Services
Victim
Guardian Healthcare
Law Firms & Legal ServicesLaw Firms & Legal ServicesLaw Firms & Legal ServicesLaw Firms & Legal Services
Qilin Ransomware Hits Houston's Jed Silverman Law Firm
Read more
Qilin Ransomware Hits Houston's Jed Silverman Law Firm
Read More
Date
November 3, 2024
Ransomware group
Qilin
Location

Houston, Texas

Houston, USA

USA
Industry
Law Firms & Legal Services
Victim
The Law Offices of Jed Silverman
TransportationTransportationTransportationTransportation
BianLian Ransomware Hits L & B Transport in Major Cyberattack
Read more
BianLian Ransomware Hits L & B Transport in Major Cyberattack
Read More
Date
November 3, 2024
Ransomware group
Bianlian
Location

Port Allen, Louisiana

Port Allen, USA

USA
Industry
Transportation
Victim
L & B Transport, L.L.C.
ManufacturingManufacturingManufacturingManufacturing
Qilin Ransomware Hits French Printing Firm Imprimerie Peau
Read more
Qilin Ransomware Hits French Printing Firm Imprimerie Peau
Read More
Date
November 2, 2024
Ransomware group
Qilin
Location

Berd'huis,

Berd'huis, France

France
Industry
Manufacturing
Victim
Imprimerie Peau
ManufacturingManufacturingManufacturingManufacturing
Ransomware Attack on DieTech North America by Qilin Group
Read more
Ransomware Attack on DieTech North America by Qilin Group
Read More
Date
November 2, 2024
Ransomware group
Qilin
Location

Stittsville,

Stittsville, Canada

Canada
Industry
Manufacturing
Victim
DieTech North America
No results found.
There are no results with this criteria. Try changing your search.
Load More

Ready to Get Resilient Against Ransomware?

An endpoint resiliency platform is a critical part of a strong security strategy to protect your business and continuity. Setup a meeting to learn more with a Halcyon expert today.
Learn More

Request removal

To submit a takedown request, please provide a clear identification of the content in question, including the URL(s) or page title, along with a brief description of what should be removed or revised. Clarify your relationship to the content in question. State the reason for your request, such as inaccuracy, privacy violation, intellectual property infringement, or defamation, and provide any supporting evidence. Include your full name, position (if relevant), and preferred contact details.

While Halcyon will comply with valid takedown requests, please note that our reporting conforms to fair use principles, and all information is sourced from publicly available data leak aggregator websites and public news sources.

Submit your request to [insert email] with the subject line: “Takedown Request – [Content/Entity Name].”Input the contact email where you would like the request to go to.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.