Ransomware
RANSOMWARE INTELLIGENCE
Activity ratings derived from real-time victim leak site data. Groups are auto-discovered and scored based on victim volume, recency, and momentum.
Surging
4
3+ victims in 7 days
Active Groups
66
Currently operating
Critical Threat
8
Highest priority
Total Victims
863
From leak site data
Untracked
0
All groups synced
Ransomware Groups (91)
Qilin
Qilin.B (Rust variant)
Akira
GOLD SAHARA, PUNK SPIDER
Nightspire
DragonForce
DragonForce Ransomware Cartel
Play
Play Ransomware, Playboy Ransomware
LockBit5
LockBit, LockBit 3.0
Genesis
Vect
Lapsus$
LAPSUS$, Lapsus Group
Everest
Everest Ransomware
Sinobi
Atomsilo
AtomSilo, Grief
Rhysida
Medusa
RansomHouse
RansomHouse Group
Morpheus
Agent Smith, The Architect
Abyss
Abyss Locker, AbyssLocker
LockBit 3.0
LockBit Black, LockBit
LockBit
LockBit 2.0, LockBit 3.0
LockBit 2.0
LockBit, LockBit Black
Conti
Conti Team, Conti Group
0mega
0mega Ransomware, Omega Ransomware
Monti
Monti Ransomware
Osiris
Trident Locker
TridentLocker, Trident
Inc Ransom
Inc. Ransom, GOLD IONIC
Money Message
MoneyMessage, MnyMsg
Black Basta
Storm-0506
RansomHub
RansomHub Ransomware
Hunters
Hunters International
Mallox
TargetCompany, Fpcc
Cooming
CoomingProject
BlackSuit
BlackSuit Ransomware
VanirGroup
Vanir Locker
MalekTeam
imncrew
IMNCrew
BlueLocker
Blue Locker
raworld
Raworld
GunRansom
GunRansomware, GUNRANSOM
BonaciGroup
Bonaci
RedAlert
Nokoyawa
Babuk2
Babuk Locker, Babuk
Hotarus
LostTrust
LostTrust Ransomware
Babuk
Babuk Locker, Babuk Ransomware
HolyGhost
Holy Ghost, HolyGhost Ransomware
Daixin Team
Daixin
Snatch
Snatch Ransomware
MosesStaff
Moses Staff
MedusaLocker
Medusa, Medusa Ransomware
NovaLocker
Nova, Nova Ransomware
Lorenz
Lorenz ransomware
Nevada
Nevada Ransomware
Pysa
Mespinoza, WannaCryFF
Ransom Cartel
RansomCartel
Lunalock
Luna Ransomware
Lilith
Lilith Ransomware
Pandora
Pandora Ransomware
DarkAngels
Dark Angels
Midas Ransomware
Midas Ransomware, Midas
Karakurt
Karakurt Team, Karakurt Ransomware Group
DagonLocker
Dagon
Entropy
FiveHands
IceFire
RagnarLocker
Ragnar Locker, Ragnar_Locker
Rook
Rook Ransomware
Ranzy
Ranzy Locker
Diavol
Diavol Ransomware
HelloKitty
FiveHands, DeathKitty
onepercent
OnePercent Group, OnePercent Ransomware
Prometheus
Prometheus Ransomware
BlackMatter
DarkSide, REvil
Ragnarok
Ragnar Locker
MountLocker
Mount Locker
Prolock
Prolocker
Avaddon
Avaddon Ransomware
Nefilim
Nephilim, Nemty
Pay2Key
Linked to: Pioneer Kitten
Hades
Hades Ransomware, Linked to: Evil Corp
Netwalker
Mailto, Karakurt
Maze
ChaCha, Active Directory
RobinHood
RobinHood Ransomware
BlackByte
GOLD SOUTHFIELD
Pinchy Spider
Storm-0501
Storm-1811
Water Galura
GOLD FEATHER
Nokoyawa
Bashful Scorpius
Trigona
REvil
Sodinokibi, GOLD SOUTHFIELD