Loading....

Explore the Halcyon Attacks Lookout

The Halcyon Attacks Lookout (or ‘HAL’ for short) is a recent ransomware attacks watchtower, built to provide tracking of attacks, groups and their victims. Given threat actors' overarching, lucrative success from ransomware attacks, they’ve become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

Ransomware Attacks Database

Attacks by Industry
Attacks by Groups
Attacks by Locations
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Tag
Showing 0 of 100
InsuranceInsuranceInsuranceInsurance
This is some text inside of a div block.
Read more
Dragonforce Alleges Ransomware Attack on Insurance Company
Date
March 9, 2025
Ransomware group
Dragonforce
Location

New Zealand

New Zealand
Industry
Insurance
EducationEducationEducationEducation
This is some text inside of a div block.
Read more
Inc Ransom Alleges Ransomware Attack on California Education Company
Date
March 9, 2025
Ransomware group
Inc Ransom
Location

California

USA

USA
Industry
Education
SoftwareSoftwareSoftwareSoftware
This is some text inside of a div block.
Read more
Embargo Alleges Ransomware Attack on Software Company
Date
March 9, 2025
Ransomware group
Embargo
Location

United Kingdom

United Kingdom
Industry
Software
ConstructionConstructionConstructionConstruction
This is some text inside of a div block.
Read more
Inc Ransom Alleges Ransomware Attack on Massachusetts Construction Company
Date
March 9, 2025
Ransomware group
Inc Ransom
Location

Massachusetts

USA

USA
Industry
Construction
Healthcare ServicesHealthcare ServicesHealthcare ServicesHealthcare Services
This is some text inside of a div block.
Read more
CrazyHunter Alleges Ransomware Attack on Healthcare Services Company
Date
March 9, 2025
Ransomware group
CrazyHunter
Location

Taiwan

Taiwan
Industry
Healthcare Services
ManufacturingManufacturingManufacturingManufacturing
This is some text inside of a div block.
Read more
CrazyHunter Alleges Ransomware Attack on Manufacturing Company
Date
March 9, 2025
Ransomware group
CrazyHunter
Location

China

China
Industry
Manufacturing
Healthcare ServicesHealthcare ServicesHealthcare ServicesHealthcare Services
This is some text inside of a div block.
Read more
CrazyHunter Alleges Ransomware Attack on Healthcare Services Company
Date
March 9, 2025
Ransomware group
CrazyHunter
Location

Taiwan

Taiwan
Industry
Healthcare Services
ConstructionConstructionConstructionConstruction
This is some text inside of a div block.
Read more
Dragonforce Alleges Ransomware Attack on Michigan Construction Company
Date
March 9, 2025
Ransomware group
Dragonforce
Location

Michigan

USA

USA
Industry
Construction
Hospitals & Physicians ClinicsHospitals & Physicians ClinicsHospitals & Physicians ClinicsHospitals & Physicians Clinics
This is some text inside of a div block.
Read more
CrazyHunter Alleges Ransomware Attack on Hospitals & Physicians Clinics Company
Date
March 9, 2025
Ransomware group
CrazyHunter
Location

Taiwan

Taiwan
Industry
Hospitals & Physicians Clinics
Law Firms & Legal ServicesLaw Firms & Legal ServicesLaw Firms & Legal ServicesLaw Firms & Legal Services
This is some text inside of a div block.
Read more
Ransomhub Alleges Ransomware Attack on Mississippi Law Firms & Legal Services Company
Date
March 8, 2025
Ransomware group
Ransomhub
Location

Mississippi

USA

USA
Industry
Law Firms & Legal Services
EducationEducationEducationEducation
This is some text inside of a div block.
Read more
Funksec Alleges Ransomware Attack on Education Company
Date
March 8, 2025
Ransomware group
Funksec
Location

France

France
Industry
Education
ManufacturingManufacturingManufacturingManufacturing
This is some text inside of a div block.
Read more
Ransomhub Alleges Ransomware Attack on Tennessee Manufacturing Company
Date
March 8, 2025
Ransomware group
Ransomhub
Location

Tennessee

USA

USA
Industry
Manufacturing
SoftwareSoftwareSoftwareSoftware
This is some text inside of a div block.
Read more
Ransomexx Alleges Ransomware Attack on Software Company
Date
March 7, 2025
Ransomware group
Ransomexx
Location

India

India
Industry
Software
AgricultureAgricultureAgricultureAgriculture
This is some text inside of a div block.
Read more
Lynx Alleges Ransomware Attack on Agriculture Company
Date
March 7, 2025
Ransomware group
Lynx
Location

Norway

Norway
Industry
Agriculture
Healthcare ServicesHealthcare ServicesHealthcare ServicesHealthcare Services
This is some text inside of a div block.
Read more
Bianlian Alleges Ransomware Attack on Minnesota Healthcare Services Company
Date
March 7, 2025
Ransomware group
Bianlian
Location

Minnesota

USA

USA
Industry
Healthcare Services
RetailRetailRetailRetail
This is some text inside of a div block.
Read more
Lynx Alleges Ransomware Attack on Retail Company
Date
March 7, 2025
Ransomware group
Lynx
Location

South Africa

South Africa
Industry
Retail
GovernmentGovernmentGovernmentGovernment
This is some text inside of a div block.
Read more
Ransomhub Alleges Ransomware Attack on Ohio Government Company
Date
March 7, 2025
Ransomware group
Ransomhub
Location

Ohio

USA

USA
Industry
Government
ConstructionConstructionConstructionConstruction
This is some text inside of a div block.
Read more
Sarcoma Alleges Ransomware Attack on Construction Company
Date
March 7, 2025
Ransomware group
Sarcoma
Location

United Kingdom

United Kingdom
Industry
Construction
ManufacturingManufacturingManufacturingManufacturing
This is some text inside of a div block.
Read more
Ransomhub Alleges Ransomware Attack on Virginia Manufacturing Company
Date
March 7, 2025
Ransomware group
Ransomhub
Location

Virginia

USA

USA
Industry
Manufacturing
ConstructionConstructionConstructionConstruction
This is some text inside of a div block.
Read more
Ransomhub Alleges Ransomware Attack on Virginia Construction Company
Date
March 7, 2025
Ransomware group
Ransomhub
Location

Virginia

USA

USA
Industry
Construction
EducationEducationEducationEducation
This is some text inside of a div block.
Read more
Funksec Alleges Ransomware Attack on Education Company
Date
March 7, 2025
Ransomware group
Funksec
Location

France

France
Industry
Education
Real EstateReal EstateReal EstateReal Estate
This is some text inside of a div block.
Read more
Bianlian Alleges Ransomware Attack on South Carolina Real Estate Company
Date
March 7, 2025
Ransomware group
Bianlian
Location

South Carolina

USA

USA
Industry
Real Estate
RetailRetailRetailRetail
This is some text inside of a div block.
Read more
Arcus Media Alleges Ransomware Attack on Retail Company
Date
March 7, 2025
Ransomware group
Arcus Media
Location

Spain

Spain
Industry
Retail
ManufacturingManufacturingManufacturingManufacturing
This is some text inside of a div block.
Read more
Akira Alleges Ransomware Attack on Wisconsin Manufacturing Company
Date
March 7, 2025
Ransomware group
Akira
Location

Wisconsin

USA

USA
Industry
Manufacturing
Business ServicesBusiness ServicesBusiness ServicesBusiness Services
This is some text inside of a div block.
Read more
Weyhro Alleges Ransomware Attack on New Hampshire Business Services Company
Date
March 6, 2025
Ransomware group
Weyhro
Location

New Hampshire

USA

USA
Industry
Business Services
SoftwareSoftwareSoftwareSoftware
This is some text inside of a div block.
Read more
Weyhro Alleges Ransomware Attack on Software Company
Date
March 6, 2025
Ransomware group
Weyhro
Location

Canada

Canada
Industry
Software
Law Firms & Legal ServicesLaw Firms & Legal ServicesLaw Firms & Legal ServicesLaw Firms & Legal Services
This is some text inside of a div block.
Read more
Weyhro Alleges Ransomware Attack on Rhode Island Law Firms & Legal Services Company
Date
March 6, 2025
Ransomware group
Weyhro
Location

Rhode Island

USA

USA
Industry
Law Firms & Legal Services
ManufacturingManufacturingManufacturingManufacturing
This is some text inside of a div block.
Read more
Weyhro Alleges Ransomware Attack on Manufacturing Company
Date
March 6, 2025
Ransomware group
Weyhro
Location

Italy

Italy
Industry
Manufacturing
Real EstateReal EstateReal EstateReal Estate
This is some text inside of a div block.
Read more
Skira Alleges Ransomware Attack on Real Estate Company
Date
March 6, 2025
Ransomware group
Skira
Location

India

India
Industry
Real Estate
Business ServicesBusiness ServicesBusiness ServicesBusiness Services
This is some text inside of a div block.
Read more
Skira Alleges Ransomware Attack on Oregon Business Services Company
Date
March 6, 2025
Ransomware group
Skira
Location

Oregon

USA

USA
Industry
Business Services
Law Firms & Legal ServicesLaw Firms & Legal ServicesLaw Firms & Legal ServicesLaw Firms & Legal Services
This is some text inside of a div block.
Read more
Skira Alleges Ransomware Attack on Illinois Law Firms & Legal Services Company
Date
March 6, 2025
Ransomware group
Skira
Location

Illinois

USA

USA
Industry
Law Firms & Legal Services
ManufacturingManufacturingManufacturingManufacturing
This is some text inside of a div block.
Read more
Skira Alleges Ransomware Attack on Manufacturing Company
Date
March 6, 2025
Ransomware group
Skira
Location

India

India
Industry
Manufacturing
No results found.
There are no results with this criteria. Try changing your search.
Load More

Disclaimer

The Halcyon Attacks Lookout Database is compiled using publicly available information based on the hosting choices of real-world threat actors and data from a variety of trackers. This information is provided in accordance with principles of fair use. Halcyon has made reasonable efforts to sanitize and verify the data; however, we do not guarantee the accuracy, completeness, or reliability of the information provided. Updates to the database are made as new source data becomes available from reputable sources.  By accessing, viewing, or using the information within the Halcyon Attacks Lookout Database, you acknowledge and agree to do so entirely at your own risk. No reliance should be placed upon the information for decision-making, and Halcyon disclaims all liability for any inaccuracies or omissions in the data.

Ready to Get Resilient Against Ransomware?

An endpoint resiliency platform is a critical part of a strong security strategy to protect your business and continuity. Setup a meeting to learn more with a Halcyon expert today.
Learn More

Request removal

To submit a takedown request, please provide a clear identification of the content in question, including the URL(s) or page title, along with a brief description of what should be removed or revised. Clarify your relationship to the content in question. State the reason for your request, such as inaccuracy, privacy violation, intellectual property infringement, or defamation, and provide any supporting evidence. Include your full name, position (if relevant), and preferred contact details.

While Halcyon will comply with valid takedown requests, please note that our reporting conforms to fair use principles, and all information is sourced from publicly available data leak aggregator websites and public news sources.

Submit your request to [insert email] with the subject line: “Takedown Request – [Content/Entity Name].”Input the contact email where you would like the request to go to.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.