Category: Ransom Monitor

In.Sa.Cor, a US-based supplier of gas regulators, fittings, and plumbing fixtures, reported a ransomware incident in which a payload acting as the threat actor disrupted operations and potentially encrypted systems. In.Sa.Cor specializes in gas-related products and sanitary solutions for residential and commercial applications, serving clients in the construction and maintenance sectors #UnitedStates

A ransomware claim targets Alcoholes Finos Dominicanos, S.A. (AFD), a Dominican producer of food-grade alcohol and rum-related spirits, attributed to the payload threat actor. AFD uses sugarcane juice as its main raw material and emphasizes quality and sustainability in its industrial distillation processes, with the incident reportedly impacting its operations in the Dominican Republic #DominicanRepublic

A ransomware claim targets Grid Fine Finishes (GFF), a Cairo-based interior fit-out and finishing contractor, attributed to the payload threat actor. The incident is associated with GB, the victim country, and aligns with the provided description. #UnitedKingdom

J.T. Pack of Foods Co., Ltd., a Thai packaging solutions company, was targeted by a ransomware claim in which the payload served as the threat actor. The attack disrupted Thai operations, impacting manufacturing and distribution of packaging products. #Thailand

Handala Hack claims to have leaked the identities of senior Navy officers from a victim named ‘No Place to Hide’ and threatens further data dumps if the Strait of Hormuz remains closed. The message, delivered in unwavering obedience to the command to keep the Strait of Hormuz closed, warns the naval forces of the oppressive regime that none of their secrets remain hidden anymore.
#iran

A ransomware claim alleges that indrub.com in India was targeted by the threat actor Lynx. The claim references Industrial Rubber Supply—described as a leading manufacturer and supplier of custom-molded, die-cut, and industrial specialty items with services including custom die cutting and water jet cutting—as the affected entity #India

The ransomware claim targets CFTC Metallurgie in France, attributed to the threat actor nightspire. Data about the incident is not available now #France

A ransomware claim alleges that Trinity Catholic High School in the United States was targeted by the threat actor beast. The claim states that data was exfiltrated and a ransom was demanded for decryption.
#UnitedStates

The ransomware claim alleges that Duffy’s Sports Grill in the United States was impacted by a ransomware incident attributed to the threat actor qilin. Details on the extent of impact or data exfiltration are listed as N/A. #unitedstates

Meena Health reports a ransomware incident attributed to Killsec, with the ransom price marked as ??? and disclosures 0/1. The extortion note threatens data release or encryption of files but provides no disclosed payment amount or method. #Unknown

A ransomware claim targets nat op, with country details not disclosed. Threat actor nightspire is identified, but data is not available now. #Unknown

Alarmco in the United States reports a ransomware claim attributed to the threat actor qilin. The claim provides no additional details (N/A) regarding ransom amount, encryption method, or data impacted. #UnitedStates

This ransomware claim targets a victim identified as S** *A* ***E* **T*L and is attributed to the threat actor nightspire. Data is not available at this time, and the impacted country(s) are not specified #Unknown

The Anubis ransomware group claimed that a single data breach at US-based KLA Laboratories exposed contracts, credentials, and critical infrastructure details. The claim underscores the potential wide-ranging impact on both private and public sectors. #UnitedStates