Loading....

A blue map of the world with a black background.

Explore the Halcyon Attacks Lookout

The Halcyon Attacks Lookout (or ‘HAL’ for short) is a recent ransomware attacks watchtower, built to provide tracking of attacks, groups and their victims. Given threat actors' overarching, lucrative success from ransomware attacks, they’ve become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

Ransomware Attacks Database

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Showing 32 of 32
EducationEducationEducationEducation
Vicesociety Alleges Ransomware Attack on Wisconsin Education Company
Date
September 4, 2022
Ransomware group
Vicesociety
Location

Wisconsin

USA

USA
Industry
Education
RetailRetailRetailRetail
Lockbit Alleges Ransomware Attack on Kansas Retail Company
Date
September 4, 2022
Ransomware group
Lockbit
Location

Kansas

USA

USA
Industry
Retail
Media & InternetMedia & InternetMedia & InternetMedia & Internet
Lockbit Alleges Ransomware Attack on Cundinamarca Media & Internet Company
Date
September 4, 2022
Ransomware group
Lockbit
Location

Cundinamarca

Colombia

Colombia
Industry
Media & Internet
Media & InternetMedia & InternetMedia & InternetMedia & Internet
Blackbasta Alleges Ransomware Attack on Pennsylvania Media & Internet Company
Date
September 4, 2022
Ransomware group
Blackbasta
Location

Pennsylvania

USA

USA
Industry
Media & Internet
GovernmentGovernmentGovernmentGovernment
Ransomexx Alleges Ransomware Attack on Federal Government Company
Date
September 3, 2022
Ransomware group
Ransomexx
Location

Federal

Brazil

Brazil
Industry
Government
HospitalityHospitalityHospitalityHospitality
Bianlian Alleges Ransomware Attack on Florida Hospitality Company
Date
September 3, 2022
Ransomware group
Bianlian
Location

Florida

USA

USA
Industry
Hospitality
RetailRetailRetailRetail
Bianlian Alleges Ransomware Attack on Florida Retail Company
Date
September 3, 2022
Ransomware group
Bianlian
Location

Florida

USA

USA
Industry
Retail
TransportationTransportationTransportationTransportation
Ragnarlocker Alleges Ransomware Attack on Lisboa Transportation Company
Date
September 2, 2022
Ransomware group
Ragnarlocker
Location

Lisboa

Portugal

Portugal
Industry
Transportation
GovernmentGovernmentGovernmentGovernment
Quantum Alleges Ransomware Attack on Santo Domingo Government Company
Date
September 2, 2022
Ransomware group
Quantum
Location

Santo Domingo

Dominican Republic

Dominican Republic
Industry
Government
Business ServicesBusiness ServicesBusiness ServicesBusiness Services
Lockbit Alleges Ransomware Attack on California Business Services Company
Date
September 2, 2022
Ransomware group
Lockbit
Location

California

USA

USA
Industry
Business Services
ConstructionConstructionConstructionConstruction
Hiveleak Alleges Ransomware Attack on Sheffield Construction Company
Date
September 2, 2022
Ransomware group
Hiveleak
Location

Sheffield

United Kingdom

United Kingdom
Industry
Construction
EducationEducationEducationEducation
Vicesociety Alleges Ransomware Attack on Pennsylvania Education Company
Date
September 1, 2022
Ransomware group
Vicesociety
Location

Pennsylvania

USA

USA
Industry
Education
ManufacturingManufacturingManufacturingManufacturing
Revil Alleges Ransomware Attack on Maharashtra Manufacturing Company
Date
September 1, 2022
Ransomware group
Revil
Location

Maharashtra

India

India
Industry
Manufacturing
Business ServicesBusiness ServicesBusiness ServicesBusiness Services
Quantum Alleges Ransomware Attack on California Business Services Company
Date
September 1, 2022
Ransomware group
Quantum
Location

California

USA

USA
Industry
Business Services
ManufacturingManufacturingManufacturingManufacturing
Lockbit Alleges Ransomware Attack on new jersy Manufacturing Company
Date
September 1, 2022
Ransomware group
Lockbit
Location

new jersy

USA

USA
Industry
Manufacturing
Law Firms & Legal ServicesLaw Firms & Legal ServicesLaw Firms & Legal ServicesLaw Firms & Legal Services
Lockbit Alleges Ransomware Attack on Connecticut Law Firms & Legal Services Company
Date
September 1, 2022
Ransomware group
Lockbit
Location

Connecticut

USA

USA
Industry
Law Firms & Legal Services
Healthcare ServicesHealthcare ServicesHealthcare ServicesHealthcare Services
Donutleaks Alleges Ransomware Attack on North Carolina Healthcare Services Company
Date
September 1, 2022
Ransomware group
Donutleaks
Location

North Carolina

USA

USA
Industry
Healthcare Services
Media & InternetMedia & InternetMedia & InternetMedia & Internet
Cheers Alleges Ransomware Attack on Virginia Media & Internet Company
Date
September 1, 2022
Ransomware group
Cheers
Location

Virginia

USA

USA
Industry
Media & Internet
Business ServicesBusiness ServicesBusiness ServicesBusiness Services
Blackbyte Alleges Ransomware Attack on Maharashtra Business Services Company
Date
September 1, 2022
Ransomware group
Blackbyte
Location

Maharashtra

India

India
Industry
Business Services
InsuranceInsuranceInsuranceInsurance
Ragnarlocker Alleges Ransomware Attack on Connecticut Insurance Company
Date
August 31, 2022
Ransomware group
Ragnarlocker
Location

Connecticut

United Kingdom

United Kingdom
Industry
Insurance
TransportationTransportationTransportationTransportation
Ragnarlocker Alleges Ransomware Attack on New York Transportation Company
Date
August 31, 2022
Ransomware group
Ragnarlocker
Location

New York

USA

USA
Industry
Transportation
InsuranceInsuranceInsuranceInsurance
Lockbit Alleges Ransomware Attack on New York Insurance Company
Date
August 31, 2022
Ransomware group
Lockbit
Location

New York

USA

USA
Industry
Insurance
Healthcare ServicesHealthcare ServicesHealthcare ServicesHealthcare Services
Hiveleak Alleges Ransomware Attack on Flordia Healthcare Services Company
Date
August 31, 2022
Ransomware group
Hiveleak
Location

Flordia

USA

USA
Industry
Healthcare Services
Media & InternetMedia & InternetMedia & InternetMedia & Internet
Everest Alleges Ransomware Attack on Southampton SO FD Media & Internet Company
Date
August 30, 2022
Ransomware group
Everest
Location

Southampton SO FD

United Kingdom

United Kingdom
Industry
Media & Internet
GovernmentGovernmentGovernmentGovernment
Cuba Alleges Ransomware Attack on Cetinjskog Government Company
Date
August 30, 2022
Ransomware group
Cuba
Location

Cetinjskog

Montenegro

Montenegro
Industry
Government
Media & InternetMedia & InternetMedia & InternetMedia & Internet
Bianlian Alleges Ransomware Attack on North Carolina Media & Internet Company
Date
August 30, 2022
Ransomware group
Bianlian
Location

North Carolina

USA

USA
Industry
Media & Internet
Healthcare ServicesHealthcare ServicesHealthcare ServicesHealthcare Services
Bianlian Alleges Ransomware Attack on Texas Healthcare Services Company
Date
August 30, 2022
Ransomware group
Bianlian
Location

Texas

USA

USA
Industry
Healthcare Services
Healthcare ServicesHealthcare ServicesHealthcare ServicesHealthcare Services
Bianlian Alleges Ransomware Attack on Bajos de Haina Healthcare Services Company
Date
August 30, 2022
Ransomware group
Bianlian
Location

Bajos de Haina

Dominican Republic

Dominican Republic
Industry
Healthcare Services
Healthcare ServicesHealthcare ServicesHealthcare ServicesHealthcare Services
Bianlian Alleges Ransomware Attack on New Mexico Healthcare Services Company
Date
August 30, 2022
Ransomware group
Bianlian
Location

New Mexico

USA

USA
Industry
Healthcare Services
HospitalityHospitalityHospitalityHospitality
Bianlian Alleges Ransomware Attack on Australia Hospitality Company
Date
August 30, 2022
Ransomware group
Bianlian
Location

Australia

Australia

Australia
Industry
Hospitality
ManufacturingManufacturingManufacturingManufacturing
Bianlian Alleges Ransomware Attack on Fareham PO SH Manufacturing Company
Date
August 30, 2022
Ransomware group
Bianlian
Location

Fareham PO SH

United Kingdom

United Kingdom
Industry
Manufacturing
SoftwareSoftwareSoftwareSoftware
Bianlian Alleges Ransomware Attack on Bengaluru Software Company
Date
August 30, 2022
Ransomware group
Bianlian
Location

Bengaluru

India

India
Industry
Software

Disclaimer

The Halcyon Attacks Lookout Database is compiled using publicly available information based on the hosting choices of real-world threat actors and data from a variety of trackers. This information is provided in accordance with principles of fair use. Halcyon has made reasonable efforts to sanitize and verify the data; however, we do not guarantee the accuracy, completeness, or reliability of the information provided. Updates to the database are made as new source data becomes available from reputable sources.  By accessing, viewing, or using the information within the Halcyon Attacks Lookout Database, you acknowledge and agree to do so entirely at your own risk. No reliance should be placed upon the information for decision-making, and Halcyon disclaims all liability for any inaccuracies or omissions in the data.

Ready to Get Resilient Against Ransomware?

An endpoint resiliency platform is a critical part of a strong security strategy to protect your business and continuity. Setup a meeting to learn more with a Halcyon expert today.

Request removal

To submit a takedown request, please provide a clear identification of the content in question, including the URL(s) or page title, along with a brief description of what should be removed or revised. Clarify your relationship to the content in question. State the reason for your request, such as inaccuracy, privacy violation, intellectual property infringement, or defamation, and provide any supporting evidence. Include your full name, position (if relevant), and preferred contact details.

While Halcyon will comply with valid takedown requests, please note that our reporting conforms to fair use principles, and all information is sourced from publicly available data leak aggregator websites and public news sources.

Submit your request to [insert email] with the subject line: “Takedown Request – [Content/Entity Name].”Input the contact email where you would like the request to go to.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.