The threat actor sarcoma claims to have compromised Propane Levac Inc., a propane distributor serving Ontario and Quebec, Canada, and to have exfiltrated a 45GB archive of files. The claim states that the leaked archive contains files as part of a ransomware incident. #Canada
Category: Ransom Monitor
EDF Group reports a ransomware incident attributed to the threat actor qilin, affecting operations in the United States. The claim describes extortion and data encryption activities linked to qilin in the US, with limited public details available. #UnitedStates
DragonForce claims to have compromised Uinta Bank, a US-based community bank founded in 1919, as part of a ransomware operation. The statement alleges that the attackers encrypted systems or exfiltrated data to coerce payment from the bank and its customers. #UnitedStates
A ransomware claim targets minorsgardencenter.com in the United States, attributed to threat actor incransom, affecting a 120-employee retail business with $17.3 million in revenue. The actor threatens data exfiltration and ransom payment, with the listed contact number (414) 354-4830 #UnitedStates
A ransomware claim alleges that West Cary Group, a Richmond, VA-based US creative agency, was targeted by the threat actor Sinobi. The incident is described as disrupting services across branding, analytics, user experience, software engineering, and campaign development for its diverse client base. #UnitedStates
Worldleaks claims to have compromised Nike, Inc. in the United States, exfiltrating data and deploying ransomware to encrypt corporate systems. The actor threatens to publish stolen information and demands a ransom to prevent disclosure.
#UnitedStates
The ransomware group ‘play’ claims to have breached California Tax Data in the United States, threatening to leak or encrypt the information unless a ransom is paid. The claim attributes the attack to the actor ‘play’ and identifies the United States as the impacted country #UnitedStates
Qilin claims responsibility for a ransomware incident targeting Copetrol in Paraguay, stating they encrypted critical systems and will release data unless a ransom is paid. The claim provides limited detail and does not specify ransom demand or decryptor availability. #paraguay
A ransomware claim has been attributed to the threat actor Sinobi against Modernistic Garden & Pet Supply Ltd, alleging encryption of systems and threats to publish data unless a ransom is paid. The Bahamian retailer, with over 50 years serving pets and garden supplies and three locations, is the purported victim in this incident.
#Bahamas
The claim alleges that nightspire deployed ransomware against Service Lane eAdvisor in the United States, encrypting critical files and disrupting access to services. The incident is attributed to nightspire, with reports of a ransom demand and potential data exposure affecting Service Lane eAdvisor #UnitedStates
Midway Windows and Doors in the United States reported a ransomware incident attributed to threat actor ‘play’, resulting in system encryption and disruption to operations. The claim identifies the United States as the target and notes potential data exposure associated with the attack by ‘play’ #UnitedStates
OnSight, a leading production facilities company servicing the film and broadcast industries, reported a ransomware incident attributed to the Sinobi threat actor. The attack disrupted access to production and post-production operations, with no public details on the ransom or data recovered. #CountryNotSpecified
Cemtech in Kenya has fallen victim to a ransomware attack attributed to the threat actor “play” based in the United States. The attack has resulted in significant data encryption and operational disruption. #Kenya
CE Electronics has fallen victim to a ransomware attack orchestrated by the threat actor Play, originating from the United States. The incident has resulted in significant data encryption and potential disruption of operations within the United States. #UnitedStates
Asian Heart Institute (AHI) in Mumbai, India, faced a ransomware attack perpetrated by the threat actor Sinobi, potentially compromising their extensive patient data and operational systems. The incident underscores the vulnerability of healthcare institutions to sophisticated cyber threats #India