DETECTO/ThreatDossier
DashboardPricingThreatsRun Free ScanSign In
DETECTO/ThreatDossier

Security intelligence for MSPs, consultants, and businesses. Find breached credentials, compliance gaps, and exposed infrastructure before attackers do.

Product

  • Scan a Domain
  • Pricing
  • Dashboard
  • Sign In

Resources

  • Threat Intelligence
  • Ransomware Groups

Legal

  • Privacy Policy
  • Terms of Service

© 2026 DETECTO. All rights reserved.

Threats/Groups/VanHelsing

VanHelsing

Inactive

VanHelsing

First seen: 2025-03-17T12:55:44.274069+00:00Total victims: 8

VanHelsing is a multi-platform RaaS operation that launched on March 7, 2025, requiring a $5,000 affiliate deposit and splitting ransoms 80/20, supporting Windows, Linux, BSD, ARM, and ESXi targets, reaching at least five victims across the US, France, Italy, and Australia within its first two months.

0Total Victims
0Countries Targeted
0Sectors Targeted
0Avg Attacks/Month

Activity Timelinelast 24 months

Top Targeted Sectors

Top Targeted Countries

Recent Victimsshowing 8 of 8

NameCountrySectorDate
caschile.clCLFinancial Services2025-04-05T23:41:37.860423+00:00
attorneykohm.comUSBusiness Services2025-03-31T23:40:46.405394+00:00
alertenterprise.comUSTechnology2025-03-31T23:15:28.993793+00:00
compumedics.com.au AND neuromedicalsupplies.comAUHealthcare2025-03-26T22:42:26.319393+00:00
studiocdlvallone.itITBusiness Services2025-03-24T19:44:35.308019+00:00
www.medsrx.comUSHealthcare2025-03-19T16:45:53.578753+00:00
Atos-racks.comFRTechnology2025-03-18T22:41:28.692844+00:00
www.cityofbellville.comUSPublic Sector2025-03-17T12:55:44.274069+00:00

Data from ransomware.live