Incransom claims to have compromised VLawyers in Greece, downloading 260 GB of data from vglawyers.gr. VGLawyers is a modern law firm providing professional legal services in Greece and internationally, with a team of experienced lawyers specializing in corporate law, investments, real estate, and business support. #Greece
Category: Ransom Monitor
The ransomware claim by coinbasecartel targets RAKS Sp. z o.o., alleging data exfiltration and a leaked data dump. The claim suggests the incident involves the leakage of sensitive information with potential public release, and indicates Poland as the impacted country. #Poland
The insomnia ransomware group claims to have compromised *****d **d**** ****o**, a California-based healthcare organization that functions as a comprehensive ecosystem, combining clinical care, surgical services, research innovation, and workforce development. The claim frames the attack as targeting the United States #UnitedStates
fhw-neukoelln.de, a local heating company in the Berlin-Neukรถlln district (Fernheizwerk Neukรถlln) that supplies heat to about 40,000 homes, is reportedly the target of a ransomware claim attributed to the threat actor dragonforce. The claim describes disruptions to heating services for residents in the district as a result of the incident. #Germany
The ransomware claim targets irpea.it in Italy, attributed to the threat actor incransom, alleging data exfiltration and a ransom demand. Fondazione IRPEA is a passionate nonprofit organization based in Padua that champions community service and volunteer work, with 200 employees and $24.2 million in revenue #Italy
The GMP Group, a premier Singapore recruitment firm with global reach, reports a ransomware incident attributed to the threat actor nightspire. The attackers claim to have accessed and exfiltrated financial documents, salaries documents, and candidates’ PII, including resumes and CVs #Singapore
A ransomware claim targets the victim jursaconsulting, with extortion and data exfiltration attributed to threat actor qilin. The incident indicates Slovakia as the impacted country #Slovakia
CHEK News is reported to have been targeted by a ransomware claim attributed to the threat actor qilin, impacting operations in Canada. The claim alleges encryption of data and a ransom demand, with threats to publish stolen information if payment is not made. #Canada
Neurologic Associates Of Central Brevard in the United States confirms a ransomware incident attributed to the threat actor qilin, with N/A as additional information. No further details about the scope, impact, or data exfiltration have been disclosed. #UnitedStates
The claim alleges that the SilentRansomGroup targeted Ph..s in the United States, encrypting their data and rendering systems inaccessible. According to the claim, the group demanded a ransom for decryption keys and threatened further harm if payment was not made. #UnitedStates
Dragonforce claims to have breached blossmangas.com in a ransomware incident. Blossman Gas, a US-based, family-owned LPG service provider founded in 1951 and based in Ocean Springs, Mississippi, is named as the victim in the claim. #UnitedStates
The ransomware claim states that Lincoln Property LLC in the United States was compromised by the threat actor incransom, resulting in the exfiltration and leak of about 800GB of confidential data. The leak allegedly includes contracts, NDAs, personal data, investment memoranda, financial audits (2021โ2026), and sensitive client information from Rockhill Capital & Investments, FOCUS FINANCIAL PARTNERS, LLC, IMA Financial Group, Provident Partners RE, Deutsche Bank AG, among others. #UnitedStates
The ransomware claim targets First Trinity Financial (FTFC), an Oklahoma-based insurance holding company in Tulsa, with the threat actor ‘dragonforce’ associated with the incident. The attackers allegedly demanded payment and threatened to release sensitive financial data, in a campaign linked to dragonforce in the United States #UnitedStates
The claim identifies SAYEGH as the victim and labels the threat actor as payload, with Sayegh 1944 presenting itself as an educational company. However, its activities appear broad and somewhat lacking in transparency, spanning multiple education segments under the umbrella of developing learning materials and services for schools, without a clear core expertise or standout results. #Unknown
The claim alleges that the Anubis ransomware group compromised Publishers Clearing House, a US-based sweepstakes company, in a high-profile attack that signals the fall of a sweepstakes giant. The incident underscores ongoing threats to major US brands and appears to align with Anubis’s extortion and data-exfiltration tactics. #UnitedStates