Loading....

A blue map of the world with a black background.

Explore the Halcyon Attacks Lookout

The Halcyon Attacks Lookout (or ‘HAL’ for short) is a recent ransomware attacks watchtower, built to provide tracking of attacks, groups and their victims. Given threat actors' overarching, lucrative success from ransomware attacks, they’ve become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

Ransomware Attacks Database

Attacks by Industry
Attacks by Groups
Attacks by Locations
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Tag
Showing 0 of 100
HospitalityHospitalityHospitalityHospitality
This is some text inside of a div block.
Read more
Conti Alleges Ransomware Attack on Hamilton Hospitality Company
Date
February 11, 2022
Ransomware group
Conti
Location

Hamilton

Canada

Canada
Industry
Hospitality
Holding Companies & ConglomeratesHolding Companies & ConglomeratesHolding Companies & ConglomeratesHolding Companies & Conglomerates
This is some text inside of a div block.
Read more
Conti Alleges Ransomware Attack on Hongkong Holding Companies & Conglomerates Company
Date
February 11, 2022
Ransomware group
Conti
Location

Hongkong

China

China
Industry
Holding Companies & Conglomerates
Real EstateReal EstateReal EstateReal Estate
This is some text inside of a div block.
Read more
Conti Alleges Ransomware Attack on VG Emmen Real Estate Company
Date
February 11, 2022
Ransomware group
Conti
Location

VG Emmen

Netherlands

Netherlands
Industry
Real Estate
HospitalityHospitalityHospitalityHospitality
This is some text inside of a div block.
Read more
Conti Alleges Ransomware Attack on Arizona Hospitality Company
Date
February 11, 2022
Ransomware group
Conti
Location

Arizona

USA

USA
Industry
Hospitality
FinanceFinanceFinanceFinance
This is some text inside of a div block.
Read more
Conti Alleges Ransomware Attack on Mainz Finance Company
Date
February 10, 2022
Ransomware group
Conti
Location

Mainz

Germany

Germany
Industry
Finance
Energy, Utilities & WasteEnergy, Utilities & WasteEnergy, Utilities & WasteEnergy, Utilities & Waste
This is some text inside of a div block.
Read more
Snatch Alleges Ransomware Attack on Cau Glay Energy, Utilities & Waste Company
Date
February 9, 2022
Ransomware group
Snatch
Location

Cau Glay

Vietnam

Vietnam
Industry
Energy, Utilities & Waste
TransportationTransportationTransportationTransportation
This is some text inside of a div block.
Read more
Quantum Alleges Ransomware Attack on Punjab Transportation Company
Date
February 9, 2022
Ransomware group
Quantum
Location

Punjab

Pakistan

Pakistan
Industry
Transportation
Law Firms & Legal ServicesLaw Firms & Legal ServicesLaw Firms & Legal ServicesLaw Firms & Legal Services
This is some text inside of a div block.
Read more
Everest Alleges Ransomware Attack on Pennyslvenia Law Firms & Legal Services Company
Date
February 9, 2022
Ransomware group
Everest
Location

Pennyslvenia

USA

USA
Industry
Law Firms & Legal Services
Real EstateReal EstateReal EstateReal Estate
This is some text inside of a div block.
Read more
Conti Alleges Ransomware Attack on New York Real Estate Company
Date
February 9, 2022
Ransomware group
Conti
Location

New York

USA

USA
Industry
Real Estate
Healthcare ServicesHealthcare ServicesHealthcare ServicesHealthcare Services
This is some text inside of a div block.
Read more
Suncrypt Alleges Ransomware Attack on Arizona Healthcare Services Company
Date
February 8, 2022
Ransomware group
Suncrypt
Location

Arizona

USA

USA
Industry
Healthcare Services
ManufacturingManufacturingManufacturingManufacturing
This is some text inside of a div block.
Read more
Mountlocker Alleges Ransomware Attack on New Jersey Manufacturing Company
Date
February 8, 2022
Ransomware group
Mountlocker
Location

New Jersey

USA

USA
Industry
Manufacturing
Healthcare ServicesHealthcare ServicesHealthcare ServicesHealthcare Services
This is some text inside of a div block.
Read more
Lockbit Alleges Ransomware Attack on Montoro Healthcare Services Company
Date
February 8, 2022
Ransomware group
Lockbit
Location

Montoro

Italy

Italy
Industry
Healthcare Services
FinanceFinanceFinanceFinance
This is some text inside of a div block.
Read more
Lockbit Alleges Ransomware Attack on Miguel Hidalgo Finance Company
Date
February 8, 2022
Ransomware group
Lockbit
Location

Miguel Hidalgo

Mexico

Mexico
Industry
Finance
ConstructionConstructionConstructionConstruction
This is some text inside of a div block.
Read more
Lockbit Alleges Ransomware Attack on Bucuresti Construction Company
Date
February 8, 2022
Ransomware group
Lockbit
Location

Bucuresti

Romania

Romania
Industry
Construction
TransportationTransportationTransportationTransportation
This is some text inside of a div block.
Read more
Conti Alleges Ransomware Attack on Martigues Transportation Company
Date
February 8, 2022
Ransomware group
Conti
Location

Martigues

France

France
Industry
Transportation
SoftwareSoftwareSoftwareSoftware
This is some text inside of a div block.
Read more
Blackbyte Alleges Ransomware Attack on Wisconsin Software Company
Date
February 8, 2022
Ransomware group
Blackbyte
Location

Wisconsin

USA

USA
Industry
Software
ManufacturingManufacturingManufacturingManufacturing
This is some text inside of a div block.
Read more
Blackbyte Alleges Ransomware Attack on Almelo Manufacturing Company
Date
February 8, 2022
Ransomware group
Blackbyte
Location

Almelo

Netherlands

Netherlands
Industry
Manufacturing
Healthcare ServicesHealthcare ServicesHealthcare ServicesHealthcare Services
This is some text inside of a div block.
Read more
Alphv Alleges Ransomware Attack on South carolina Healthcare Services Company
Date
February 8, 2022
Ransomware group
Alphv
Location

South carolina

USA

USA
Industry
Healthcare Services
AgricultureAgricultureAgricultureAgriculture
This is some text inside of a div block.
Read more
Alphv Alleges Ransomware Attack on Iowa Agriculture Company
Date
February 8, 2022
Ransomware group
Alphv
Location

Iowa

USA

USA
Industry
Agriculture
ManufacturingManufacturingManufacturingManufacturing
This is some text inside of a div block.
Read more
Lockbit Alleges Ransomware Attack on sierning Manufacturing Company
Date
February 7, 2022
Ransomware group
Lockbit
Location

sierning

Austria

Austria
Industry
Manufacturing
ConstructionConstructionConstructionConstruction
This is some text inside of a div block.
Read more
Conti Alleges Ransomware Attack on Damam Construction Company
Date
February 7, 2022
Ransomware group
Conti
Location

Damam

Saudi Arabia

Saudi Arabia
Industry
Construction
Law Firms & Legal ServicesLaw Firms & Legal ServicesLaw Firms & Legal ServicesLaw Firms & Legal Services
This is some text inside of a div block.
Read more
Conti Alleges Ransomware Attack on Oldenburg Law Firms & Legal Services Company
Date
February 7, 2022
Ransomware group
Conti
Location

Oldenburg

Germany

Germany
Industry
Law Firms & Legal Services
ManufacturingManufacturingManufacturingManufacturing
This is some text inside of a div block.
Read more
Conti Alleges Ransomware Attack on Billingham Manufacturing Company
Date
February 7, 2022
Ransomware group
Conti
Location

Billingham

United Kingdom

United Kingdom
Industry
Manufacturing
RetailRetailRetailRetail
This is some text inside of a div block.
Read more
Conti Alleges Ransomware Attack on Auckland Retail Company
Date
February 7, 2022
Ransomware group
Conti
Location

Auckland

New Zealand

New Zealand
Industry
Retail
RetailRetailRetailRetail
This is some text inside of a div block.
Read more
Conti Alleges Ransomware Attack on Tennesse Retail Company
Date
February 7, 2022
Ransomware group
Conti
Location

Tennesse

USA

USA
Industry
Retail
RetailRetailRetailRetail
This is some text inside of a div block.
Read more
Blackbyte Alleges Ransomware Attack on HongKong Retail Company
Date
February 7, 2022
Ransomware group
Blackbyte
Location

HongKong

China

China
Industry
Retail
EducationEducationEducationEducation
This is some text inside of a div block.
Read more
Lockbit Alleges Ransomware Attack on Oklahoma Education Company
Date
February 6, 2022
Ransomware group
Lockbit
Location

Oklahoma

USA

USA
Industry
Education
Real EstateReal EstateReal EstateReal Estate
This is some text inside of a div block.
Read more
Lockbit Alleges Ransomware Attack on Oklahoma Real Estate Company
Date
February 6, 2022
Ransomware group
Lockbit
Location

Oklahoma

USA

USA
Industry
Real Estate
Business ServicesBusiness ServicesBusiness ServicesBusiness Services
This is some text inside of a div block.
Read more
Alphv Alleges Ransomware Attack on Hongkong Business Services Company
Date
February 6, 2022
Ransomware group
Alphv
Location

Hongkong

China

China
Industry
Business Services
ManufacturingManufacturingManufacturingManufacturing
This is some text inside of a div block.
Read more
Suncrypt Alleges Ransomware Attack on South Dakota Manufacturing Company
Date
February 5, 2022
Ransomware group
Suncrypt
Location

South Dakota

USA

USA
Industry
Manufacturing
ManufacturingManufacturingManufacturingManufacturing
This is some text inside of a div block.
Read more
Lockbit Alleges Ransomware Attack on Blagnac Manufacturing Company
Date
February 5, 2022
Ransomware group
Lockbit
Location

Blagnac

France

France
Industry
Manufacturing
GovernmentGovernmentGovernmentGovernment
This is some text inside of a div block.
Read more
Lockbit Alleges Ransomware Attack on Erzurum Government Company
Date
February 5, 2022
Ransomware group
Lockbit
Location

Erzurum

Turkey

Turkey
Industry
Government
No results found.
There are no results with this criteria. Try changing your search.
Load More

Disclaimer

The Halcyon Attacks Lookout Database is compiled using publicly available information based on the hosting choices of real-world threat actors and data from a variety of trackers. This information is provided in accordance with principles of fair use. Halcyon has made reasonable efforts to sanitize and verify the data; however, we do not guarantee the accuracy, completeness, or reliability of the information provided. Updates to the database are made as new source data becomes available from reputable sources.  By accessing, viewing, or using the information within the Halcyon Attacks Lookout Database, you acknowledge and agree to do so entirely at your own risk. No reliance should be placed upon the information for decision-making, and Halcyon disclaims all liability for any inaccuracies or omissions in the data.

Ready to Get Resilient Against Ransomware?

An endpoint resiliency platform is a critical part of a strong security strategy to protect your business and continuity. Setup a meeting to learn more with a Halcyon expert today.
Learn More

Request removal

To submit a takedown request, please provide a clear identification of the content in question, including the URL(s) or page title, along with a brief description of what should be removed or revised. Clarify your relationship to the content in question. State the reason for your request, such as inaccuracy, privacy violation, intellectual property infringement, or defamation, and provide any supporting evidence. Include your full name, position (if relevant), and preferred contact details.

While Halcyon will comply with valid takedown requests, please note that our reporting conforms to fair use principles, and all information is sourced from publicly available data leak aggregator websites and public news sources.

Submit your request to [insert email] with the subject line: “Takedown Request – [Content/Entity Name].”Input the contact email where you would like the request to go to.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.