Loading....

A blue map of the world with a black background.

Explore the Halcyon Attacks Lookout

The Halcyon Attacks Lookout (or ‘HAL’ for short) is a recent ransomware attacks watchtower, built to provide tracking of attacks, groups and their victims. Given threat actors' overarching, lucrative success from ransomware attacks, they’ve become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

Ransomware Attacks Database

Attacks by Industry
Attacks by Groups
Attacks by Locations
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Tag
Showing 0 of 100
ConstructionConstructionConstructionConstruction
This is some text inside of a div block.
Read more
Everest Alleges Ransomware Attack on California Construction Company
Date
March 7, 2022
Ransomware group
Everest
Location

California

USA

USA
Industry
Construction
Real EstateReal EstateReal EstateReal Estate
This is some text inside of a div block.
Read more
Everest Alleges Ransomware Attack on Metro Manila Real Estate Company
Date
March 7, 2022
Ransomware group
Everest
Location

Metro Manila

Philippines

Philippines
Industry
Real Estate
FinanceFinanceFinanceFinance
This is some text inside of a div block.
Read more
Everest Alleges Ransomware Attack on Punjab Finance Company
Date
March 7, 2022
Ransomware group
Everest
Location

Punjab

India

India
Industry
Finance
Consumer ServicesConsumer ServicesConsumer ServicesConsumer Services
This is some text inside of a div block.
Read more
Everest Alleges Ransomware Attack on Georgia Consumer Services Company
Date
March 7, 2022
Ransomware group
Everest
Location

Georgia

USA

USA
Industry
Consumer Services
FinanceFinanceFinanceFinance
This is some text inside of a div block.
Read more
Conti Alleges Ransomware Attack on Ittigen Finance Company
Date
March 7, 2022
Ransomware group
Conti
Location

Ittigen

Switzerland

Switzerland
Industry
Finance
ManufacturingManufacturingManufacturingManufacturing
This is some text inside of a div block.
Read more
Conti Alleges Ransomware Attack on Mexico Manufacturing Company
Date
March 7, 2022
Ransomware group
Conti
Location

Mexico

USA

USA
Industry
Manufacturing
Holding Companies & ConglomeratesHolding Companies & ConglomeratesHolding Companies & ConglomeratesHolding Companies & Conglomerates
This is some text inside of a div block.
Read more
Conti Alleges Ransomware Attack on Tamil Nadu Holding Companies & Conglomerates Company
Date
March 7, 2022
Ransomware group
Conti
Location

Tamil Nadu

India

India
Industry
Holding Companies & Conglomerates
RetailRetailRetailRetail
This is some text inside of a div block.
Read more
Conti Alleges Ransomware Attack on Goiânia Retail Company
Date
March 7, 2022
Ransomware group
Conti
Location

Goiânia

Brazil

Brazil
Industry
Retail
GovernmentGovernmentGovernmentGovernment
This is some text inside of a div block.
Read more
Blackbyte Alleges Ransomware Attack on Bogotá, Government Company
Date
March 7, 2022
Ransomware group
Blackbyte
Location

Bogotá,

Colombia

Colombia
Industry
Government
ConstructionConstructionConstructionConstruction
This is some text inside of a div block.
Read more
Alphv Alleges Ransomware Attack on Central Hungary Construction Company
Date
March 7, 2022
Ransomware group
Alphv
Location

Central Hungary

Hungary

Hungary
Industry
Construction
ManufacturingManufacturingManufacturingManufacturing
This is some text inside of a div block.
Read more
Conti Alleges Ransomware Attack on Maryland Manufacturing Company
Date
March 6, 2022
Ransomware group
Conti
Location

Maryland

USA

USA
Industry
Manufacturing
Healthcare ServicesHealthcare ServicesHealthcare ServicesHealthcare Services
This is some text inside of a div block.
Read more
Lockbit Alleges Ransomware Attack on Sao Paolo Healthcare Services Company
Date
March 5, 2022
Ransomware group
Lockbit
Location

Sao Paolo

Brazil

Brazil
Industry
Healthcare Services
ManufacturingManufacturingManufacturingManufacturing
This is some text inside of a div block.
Read more
Alphv Alleges Ransomware Attack on Milan Manufacturing Company
Date
March 5, 2022
Ransomware group
Alphv
Location

Milan

Italy

Italy
Industry
Manufacturing
ManufacturingManufacturingManufacturingManufacturing
This is some text inside of a div block.
Read more
Ragnarlocker Alleges Ransomware Attack on Bizkaia Manufacturing Company
Date
March 4, 2022
Ransomware group
Ragnarlocker
Location

Bizkaia

Spain

Spain
Industry
Manufacturing
ManufacturingManufacturingManufacturingManufacturing
This is some text inside of a div block.
Read more
Lockbit Alleges Ransomware Attack on Bedizzole Manufacturing Company
Date
March 4, 2022
Ransomware group
Lockbit
Location

Bedizzole

Italy

Italy
Industry
Manufacturing
HospitalityHospitalityHospitalityHospitality
This is some text inside of a div block.
Read more
Lockbit Alleges Ransomware Attack on Pennsylvania Hospitality Company
Date
March 4, 2022
Ransomware group
Lockbit
Location

Pennsylvania

USA

USA
Industry
Hospitality
Energy, Utilities & WasteEnergy, Utilities & WasteEnergy, Utilities & WasteEnergy, Utilities & Waste
This is some text inside of a div block.
Read more
Hiveleak Alleges Ransomware Attack on Buenos Aires Energy, Utilities & Waste Company
Date
March 4, 2022
Ransomware group
Hiveleak
Location

Buenos Aires

Argentina

Argentina
Industry
Energy, Utilities & Waste
ManufacturingManufacturingManufacturingManufacturing
This is some text inside of a div block.
Read more
Conti Alleges Ransomware Attack on Comune Manufacturing Company
Date
March 4, 2022
Ransomware group
Conti
Location

Comune

Italy

Italy
Industry
Manufacturing
SoftwareSoftwareSoftwareSoftware
This is some text inside of a div block.
Read more
Conti Alleges Ransomware Attack on California Software Company
Date
March 4, 2022
Ransomware group
Conti
Location

California

USA

USA
Industry
Software
ManufacturingManufacturingManufacturingManufacturing
This is some text inside of a div block.
Read more
Conti Alleges Ransomware Attack on Pero Manufacturing Company
Date
March 4, 2022
Ransomware group
Conti
Location

Pero

Italy

Italy
Industry
Manufacturing
ManufacturingManufacturingManufacturingManufacturing
This is some text inside of a div block.
Read more
Conti Alleges Ransomware Attack on Ohio Manufacturing Company
Date
March 4, 2022
Ransomware group
Conti
Location

Ohio

USA

USA
Industry
Manufacturing
RetailRetailRetailRetail
This is some text inside of a div block.
Read more
Conti Alleges Ransomware Attack on Ontario Retail Company
Date
March 4, 2022
Ransomware group
Conti
Location

Ontario

Canada

Canada
Industry
Retail
ManufacturingManufacturingManufacturingManufacturing
This is some text inside of a div block.
Read more
Conti Alleges Ransomware Attack on Virginia Manufacturing Company
Date
March 4, 2022
Ransomware group
Conti
Location

Virginia

USA

USA
Industry
Manufacturing
EducationEducationEducationEducation
This is some text inside of a div block.
Read more
Lockbit Alleges Ransomware Attack on Oklahoma Education Company
Date
March 3, 2022
Ransomware group
Lockbit
Location

Oklahoma

USA

USA
Industry
Education
ManufacturingManufacturingManufacturingManufacturing
This is some text inside of a div block.
Read more
Lockbit Alleges Ransomware Attack on Hong Kong Manufacturing Company
Date
March 3, 2022
Ransomware group
Lockbit
Location

Hong Kong

Hong Kong

Hong Kong
Industry
Manufacturing
RetailRetailRetailRetail
This is some text inside of a div block.
Read more
Conti Alleges Ransomware Attack on BeoGrad Retail Company
Date
March 3, 2022
Ransomware group
Conti
Location

BeoGrad

USA

USA
Industry
Retail
Energy, Utilities & WasteEnergy, Utilities & WasteEnergy, Utilities & WasteEnergy, Utilities & Waste
This is some text inside of a div block.
Read more
Conti Alleges Ransomware Attack on Humberg Energy, Utilities & Waste Company
Date
March 3, 2022
Ransomware group
Conti
Location

Humberg

Germany

Germany
Industry
Energy, Utilities & Waste
Healthcare ServicesHealthcare ServicesHealthcare ServicesHealthcare Services
This is some text inside of a div block.
Read more
Conti Alleges Ransomware Attack on Massa Martana Healthcare Services Company
Date
March 3, 2022
Ransomware group
Conti
Location

Massa Martana

Italy

Italy
Industry
Healthcare Services
Real EstateReal EstateReal EstateReal Estate
This is some text inside of a div block.
Read more
Lockbit Alleges Ransomware Attack on Schwerzenbach Real Estate Company
Date
March 2, 2022
Ransomware group
Lockbit
Location

Schwerzenbach

Switzerland

Switzerland
Industry
Real Estate
TelecommunicationsTelecommunicationsTelecommunicationsTelecommunications
This is some text inside of a div block.
Read more
Lockbit Alleges Ransomware Attack on Nove mesto Telecommunications Company
Date
March 2, 2022
Ransomware group
Lockbit
Location

Nove mesto

Europe

Europe
Industry
Telecommunications
ConstructionConstructionConstructionConstruction
This is some text inside of a div block.
Read more
Lockbit Alleges Ransomware Attack on Jona SG Construction Company
Date
March 2, 2022
Ransomware group
Lockbit
Location

Jona SG

Switzerland

Switzerland
Industry
Construction
ConstructionConstructionConstructionConstruction
This is some text inside of a div block.
Read more
Lockbit Alleges Ransomware Attack on Jona SG Construction Company
Date
March 2, 2022
Ransomware group
Lockbit
Location

Jona SG

Switzerland

Switzerland
Industry
Construction
No results found.
There are no results with this criteria. Try changing your search.
Load More

Disclaimer

The Halcyon Attacks Lookout Database is compiled using publicly available information based on the hosting choices of real-world threat actors and data from a variety of trackers. This information is provided in accordance with principles of fair use. Halcyon has made reasonable efforts to sanitize and verify the data; however, we do not guarantee the accuracy, completeness, or reliability of the information provided. Updates to the database are made as new source data becomes available from reputable sources.  By accessing, viewing, or using the information within the Halcyon Attacks Lookout Database, you acknowledge and agree to do so entirely at your own risk. No reliance should be placed upon the information for decision-making, and Halcyon disclaims all liability for any inaccuracies or omissions in the data.

Ready to Get Resilient Against Ransomware?

An endpoint resiliency platform is a critical part of a strong security strategy to protect your business and continuity. Setup a meeting to learn more with a Halcyon expert today.
Learn More

Request removal

To submit a takedown request, please provide a clear identification of the content in question, including the URL(s) or page title, along with a brief description of what should be removed or revised. Clarify your relationship to the content in question. State the reason for your request, such as inaccuracy, privacy violation, intellectual property infringement, or defamation, and provide any supporting evidence. Include your full name, position (if relevant), and preferred contact details.

While Halcyon will comply with valid takedown requests, please note that our reporting conforms to fair use principles, and all information is sourced from publicly available data leak aggregator websites and public news sources.

Submit your request to [insert email] with the subject line: “Takedown Request – [Content/Entity Name].”Input the contact email where you would like the request to go to.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.