Loading....

A blue map of the world with a black background.

Explore the Halcyon Attacks Lookout

The Halcyon Attacks Lookout (or ‘HAL’ for short) is a recent ransomware attacks watchtower, built to provide tracking of attacks, groups and their victims. Given threat actors' overarching, lucrative success from ransomware attacks, they’ve become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

Ransomware Attacks Database

Attacks by Industry
Attacks by Groups
Attacks by Locations
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Tag
Showing 0 of 100
Business ServicesBusiness ServicesBusiness ServicesBusiness Services
This is some text inside of a div block.
Read more
Clop Alleges Ransomware Attack on Doral Business Services Company
Date
March 2, 2022
Ransomware group
Clop
Location

Doral

USA

USA
Industry
Business Services
SoftwareSoftwareSoftwareSoftware
This is some text inside of a div block.
Read more
Clop Alleges Ransomware Attack on Milano MI Software Company
Date
March 2, 2022
Ransomware group
Clop
Location

Milano MI

Italy

Italy
Industry
Software
Energy, Utilities & WasteEnergy, Utilities & WasteEnergy, Utilities & WasteEnergy, Utilities & Waste
This is some text inside of a div block.
Read more
Clop Alleges Ransomware Attack on Louisiana Energy, Utilities & Waste Company
Date
March 1, 2022
Ransomware group
Clop
Location

Louisiana

USA

USA
Industry
Energy, Utilities & Waste
Media & InternetMedia & InternetMedia & InternetMedia & Internet
This is some text inside of a div block.
Read more
Clop Alleges Ransomware Attack on Minnesota Media & Internet Company
Date
March 1, 2022
Ransomware group
Clop
Location

Minnesota

USA

USA
Industry
Media & Internet
Law Firms & Legal ServicesLaw Firms & Legal ServicesLaw Firms & Legal ServicesLaw Firms & Legal Services
This is some text inside of a div block.
Read more
Alphv Alleges Ransomware Attack on Nashville Law Firms & Legal Services Company
Date
March 1, 2022
Ransomware group
Alphv
Location

Nashville

USA

USA
Industry
Law Firms & Legal Services
ManufacturingManufacturingManufacturingManufacturing
This is some text inside of a div block.
Read more
Ragnarlocker Alleges Ransomware Attack on Gladakao Manufacturing Company
Date
February 28, 2022
Ransomware group
Ragnarlocker
Location

Gladakao

Spain

Spain
Industry
Manufacturing
Business ServicesBusiness ServicesBusiness ServicesBusiness Services
This is some text inside of a div block.
Read more
Quantum Alleges Ransomware Attack on Toronto Business Services Company
Date
February 28, 2022
Ransomware group
Quantum
Location

Toronto

Canada

Canada
Industry
Business Services
Media & InternetMedia & InternetMedia & InternetMedia & Internet
This is some text inside of a div block.
Read more
Lockbit Alleges Ransomware Attack on Washington Media & Internet Company
Date
February 28, 2022
Ransomware group
Lockbit
Location

Washington

USA

USA
Industry
Media & Internet
ConstructionConstructionConstructionConstruction
This is some text inside of a div block.
Read more
Lockbit Alleges Ransomware Attack on Texas Construction Company
Date
February 28, 2022
Ransomware group
Lockbit
Location

Texas

USA

USA
Industry
Construction
ConstructionConstructionConstructionConstruction
This is some text inside of a div block.
Read more
Alphv Alleges Ransomware Attack on Maryland Construction Company
Date
February 28, 2022
Ransomware group
Alphv
Location

Maryland

USA

USA
Industry
Construction
FinanceFinanceFinanceFinance
This is some text inside of a div block.
Read more
Lockbit Alleges Ransomware Attack on Texas Finance Company
Date
February 27, 2022
Ransomware group
Lockbit
Location

Texas

USA

USA
Industry
Finance
OrganizationsOrganizationsOrganizationsOrganizations
This is some text inside of a div block.
Read more
Lockbit Alleges Ransomware Attack on New Mexico Organizations Company
Date
February 27, 2022
Ransomware group
Lockbit
Location

New Mexico

USA

USA
Industry
Organizations
Real EstateReal EstateReal EstateReal Estate
This is some text inside of a div block.
Read more
Lockbit Alleges Ransomware Attack on Missouri Real Estate Company
Date
February 27, 2022
Ransomware group
Lockbit
Location

Missouri

USA

USA
Industry
Real Estate
Real EstateReal EstateReal EstateReal Estate
This is some text inside of a div block.
Read more
Lockbit Alleges Ransomware Attack on Texas Real Estate Company
Date
February 27, 2022
Ransomware group
Lockbit
Location

Texas

USA

USA
Industry
Real Estate
ManufacturingManufacturingManufacturingManufacturing
This is some text inside of a div block.
Read more
Lockbit Alleges Ransomware Attack on concorezzo Manufacturing Company
Date
February 26, 2022
Ransomware group
Lockbit
Location

concorezzo

Italy

Italy
Industry
Manufacturing
OrganizationsOrganizationsOrganizationsOrganizations
This is some text inside of a div block.
Read more
Lockbit Alleges Ransomware Attack on Punjab Organizations Company
Date
February 26, 2022
Ransomware group
Lockbit
Location

Punjab

Pakistan

Pakistan
Industry
Organizations
Holding Companies & ConglomeratesHolding Companies & ConglomeratesHolding Companies & ConglomeratesHolding Companies & Conglomerates
This is some text inside of a div block.
Read more
Conti Alleges Ransomware Attack on indiana Holding Companies & Conglomerates Company
Date
February 26, 2022
Ransomware group
Conti
Location

indiana

USA

USA
Industry
Holding Companies & Conglomerates
Healthcare ServicesHealthcare ServicesHealthcare ServicesHealthcare Services
This is some text inside of a div block.
Read more
Conti Alleges Ransomware Attack on Capital Healthcare Services Company
Date
February 26, 2022
Ransomware group
Conti
Location

Capital

United Kingdom

United Kingdom
Industry
Healthcare Services
EducationEducationEducationEducation
This is some text inside of a div block.
Read more
Conti Alleges Ransomware Attack on Neuchatel Education Company
Date
February 26, 2022
Ransomware group
Conti
Location

Neuchatel

Switzerland

Switzerland
Industry
Education
ConstructionConstructionConstructionConstruction
This is some text inside of a div block.
Read more
Lockbit Alleges Ransomware Attack on Texas Construction Company
Date
February 25, 2022
Ransomware group
Lockbit
Location

Texas

USA

USA
Industry
Construction
Business ServicesBusiness ServicesBusiness ServicesBusiness Services
This is some text inside of a div block.
Read more
Hiveleak Alleges Ransomware Attack on New Hampshire Business Services Company
Date
February 25, 2022
Ransomware group
Hiveleak
Location

New Hampshire

USA

USA
Industry
Business Services
TransportationTransportationTransportationTransportation
This is some text inside of a div block.
Read more
Hiveleak Alleges Ransomware Attack on Callao Transportation Company
Date
February 25, 2022
Ransomware group
Hiveleak
Location

Callao

Peru

Peru
Industry
Transportation
Law Firms & Legal ServicesLaw Firms & Legal ServicesLaw Firms & Legal ServicesLaw Firms & Legal Services
This is some text inside of a div block.
Read more
Hiveleak Alleges Ransomware Attack on Marryland Law Firms & Legal Services Company
Date
February 25, 2022
Ransomware group
Hiveleak
Location

Marryland

USA

USA
Industry
Law Firms & Legal Services
Media & InternetMedia & InternetMedia & InternetMedia & Internet
This is some text inside of a div block.
Read more
Hiveleak Alleges Ransomware Attack on Texas Media & Internet Company
Date
February 25, 2022
Ransomware group
Hiveleak
Location

Texas

USA

USA
Industry
Media & Internet
ManufacturingManufacturingManufacturingManufacturing
This is some text inside of a div block.
Read more
Hiveleak Alleges Ransomware Attack on Ostermundigen Manufacturing Company
Date
February 25, 2022
Ransomware group
Hiveleak
Location

Ostermundigen

Switzerland

Switzerland
Industry
Manufacturing
Business ServicesBusiness ServicesBusiness ServicesBusiness Services
This is some text inside of a div block.
Read more
Hiveleak Alleges Ransomware Attack on San Jose Business Services Company
Date
February 25, 2022
Ransomware group
Hiveleak
Location

San Jose

Costa Rica

Costa Rica
Industry
Business Services
ManufacturingManufacturingManufacturingManufacturing
This is some text inside of a div block.
Read more
Hiveleak Alleges Ransomware Attack on Shanghai Manufacturing Company
Date
February 25, 2022
Ransomware group
Hiveleak
Location

Shanghai

China

China
Industry
Manufacturing
SoftwareSoftwareSoftwareSoftware
This is some text inside of a div block.
Read more
Hiveleak Alleges Ransomware Attack on Mouscron Software Company
Date
February 25, 2022
Ransomware group
Hiveleak
Location

Mouscron

Belgium

Belgium
Industry
Software
ConstructionConstructionConstructionConstruction
This is some text inside of a div block.
Read more
Hiveleak Alleges Ransomware Attack on Sharjah Construction Company
Date
February 25, 2022
Ransomware group
Hiveleak
Location

Sharjah

United Arab Emirates

United Arab Emirates
Industry
Construction
RetailRetailRetailRetail
This is some text inside of a div block.
Read more
Hiveleak Alleges Ransomware Attack on Marryland Retail Company
Date
February 25, 2022
Ransomware group
Hiveleak
Location

Marryland

USA

USA
Industry
Retail
ManufacturingManufacturingManufacturingManufacturing
This is some text inside of a div block.
Read more
Hiveleak Alleges Ransomware Attack on Texas Manufacturing Company
Date
February 25, 2022
Ransomware group
Hiveleak
Location

Texas

USA

USA
Industry
Manufacturing
Healthcare ServicesHealthcare ServicesHealthcare ServicesHealthcare Services
This is some text inside of a div block.
Read more
Hiveleak Alleges Ransomware Attack on Mollerussa Healthcare Services Company
Date
February 25, 2022
Ransomware group
Hiveleak
Location

Mollerussa

Spain

Spain
Industry
Healthcare Services
No results found.
There are no results with this criteria. Try changing your search.
Load More

Disclaimer

The Halcyon Attacks Lookout Database is compiled using publicly available information based on the hosting choices of real-world threat actors and data from a variety of trackers. This information is provided in accordance with principles of fair use. Halcyon has made reasonable efforts to sanitize and verify the data; however, we do not guarantee the accuracy, completeness, or reliability of the information provided. Updates to the database are made as new source data becomes available from reputable sources.  By accessing, viewing, or using the information within the Halcyon Attacks Lookout Database, you acknowledge and agree to do so entirely at your own risk. No reliance should be placed upon the information for decision-making, and Halcyon disclaims all liability for any inaccuracies or omissions in the data.

Ready to Get Resilient Against Ransomware?

An endpoint resiliency platform is a critical part of a strong security strategy to protect your business and continuity. Setup a meeting to learn more with a Halcyon expert today.
Learn More

Request removal

To submit a takedown request, please provide a clear identification of the content in question, including the URL(s) or page title, along with a brief description of what should be removed or revised. Clarify your relationship to the content in question. State the reason for your request, such as inaccuracy, privacy violation, intellectual property infringement, or defamation, and provide any supporting evidence. Include your full name, position (if relevant), and preferred contact details.

While Halcyon will comply with valid takedown requests, please note that our reporting conforms to fair use principles, and all information is sourced from publicly available data leak aggregator websites and public news sources.

Submit your request to [insert email] with the subject line: “Takedown Request – [Content/Entity Name].”Input the contact email where you would like the request to go to.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.