alphv
The operators of the ALPHV/BlackCat ransomware began their activity in December 2021, making posts on Dark Web forums to promote their affiliate program, offering other actors the opportunity to engage in a 'new type of ransomware family' developed from scratch using the Rust programming language.<BR> <BR> Some clear evidence indicates that the actors behind this new ransomware are not new to cybercrime, and there were links to other affiliate programs such as DarkSide, BlackMatter, and REvil. (After several attacks against large companies, these groups faced pressure and arrests, necessitating the termination of their operations).<BR> <BR> As a security measure, the operators of ALPHV implemented the requirement for the execution of the ransomware payload by providing an 'access token,' which is supplied by the owners of the Ransomware-as-a-Service to the affiliate. This token is added to the victim's ransom note so that they can contact the threat actor responsible for encrypting the data.<BR> <BR> ALPHV affiliates employ double and triple extortion techniques, meaning the publication of the company's name on leak sites, threats of data leakage, and lastly, threats of DDoS attacks against the organization.<BR>Source: https://github.com/crocodyli/ThreatActors-TTPs
| Name | Country | Sector | Date |
|---|---|---|---|
| ipmaltamira | MX | Business Services | 2024-03-03 16:14:30.091307 |
| Ewig Usa | CN | Manufacturing | 2024-03-03 02:51:16.231626 |
| SBM & Co | GB | Not Found | 2024-03-01 22:16:37.509891 |
| Petrus Resources Ltd | US | Energy | 2024-03-01 19:06:29.703908 |
| Kumagai Gumi Group | JP | Business Services | 2024-03-01 11:42:48.642051 |
| Allan Berger & Associates | US | Business Services | 2024-02-29 20:41:38.513434 |
| Change Healthcare - Optum - UnitedHealth | US | Healthcare | 2024-02-28 17:52:40.226190 |
| verbraucherzentrale hessen | DE | Business Services | 2024-02-27 23:51:06.836218 |
| Electro Marteix | ES | Not Found | 2024-02-27 16:16:27.368735 |
| Angeles Medical Centers | US | Healthcare | 2024-02-26 19:18:22.259228 |
| S+C Partners | CA | Business Services | 2024-02-26 16:16:41.334281 |
| Worthen Industries [FULL DATA] | US | Manufacturing | 2024-02-24 13:20:11.498849 |
| Family Health center | US | Healthcare | 2024-02-23 22:19:23.575570 |
| ANDFLA SRL | RO | Not Found | 2024-02-23 10:11:07.670026 |
| Hardeman County Community Health Center | US | Healthcare | 2024-02-22 11:37:31.233424 |
| Worthen Industries [We're giving you one last chance to save your business] | US | Manufacturing | 2024-02-22 02:46:25.389381 |
| KHSS (You have 3 days) | US | Technology | 2024-02-21 20:40:21.131455 |
| Austen Consultants | US | Business Services | 2024-02-21 14:49:56.075795 |
| VSP Dental | US | Healthcare | 2024-02-18 03:03:48.918146 |
| Prudential Financial | US | Financial | 2024-02-16 22:32:20.882426 |
| LoanDepot | US | Financial | 2024-02-16 22:30:13.976966 |
| Rush Energy Services Inc [Time's up] | CA | Energy | 2024-02-15 13:34:01.161294 |
| ASA Electronics [2.7 TB] | US | Technology | 2024-02-15 07:32:09.653035 |
| The Source | CA | Business Services | 2024-02-13 13:11:40.112585 |
| ArcisGolf | US | Hospitality and Tourism | 2024-02-13 13:11:01.041537 |
| Trans-Northern Pipelines | CA | Energy | 2024-02-13 13:10:20.009553 |
| Herrs | US | Agriculture and Food Production | 2024-02-13 11:40:19.671607 |
| Procopio | US | Not Found | 2024-02-13 11:39:38.863571 |
| New Indy Containerboard | US | Manufacturing | 2024-02-13 11:38:58.992108 |
| Rush Energy Services Inc [You have 48 hours] | CA | Energy | 2024-02-12 18:52:59.104091 |
| SERCIDE | ES | Energy | 2024-02-12 16:25:53.981857 |
| Lower Valley Energy, Inc | US | Energy | 2024-02-12 15:00:24.960619 |
| maddockhenson | US | Not Found | 2024-02-10 11:37:46.475310 |
| Grace Lutheran Foundation | US | Healthcare | 2024-02-09 17:50:15.916790 |
| Jewish Home Lifecare | US | Healthcare | 2024-02-08 17:47:37.982031 |
| Vail-Summit Orthopaedics & Neurosurgery (VSON) | US | Healthcare | 2024-02-05 19:33:04.147169 |
| SportsMEDIA Technology | US | Technology | 2024-01-31 18:02:08.551896 |
| LeClair Group | US | Healthcare | 2024-01-31 18:01:27.805629 |
| Hydraflow | US | Manufacturing | 2024-01-31 18:00:39.582319 |
| TECHNICA - HACKED AND MORE THEN 300 GB DATA LEAKED! | IN | Technology | 2024-01-30 01:20:10.130064 |
| Dutton Brock | CA | Business Services | 2024-01-29 14:52:13.911805 |
| Draneas Huglin Dooley LLC | US | Business Services | 2024-01-26 08:54:15.481061 |
| Brightstar Care | US | Healthcare | 2024-01-24 22:23:44.409584 |
| MBC Law Professional Corporation | CA | Business Services | 2024-01-24 02:58:33.357347 |
| FULL LEAK! Busse & Busee, PC Attorneys at Law | US | Business Services | 2024-01-23 23:54:19.744901 |
| Total Air Solutions | US | Business Services | 2024-01-23 13:15:32.850598 |
| Herrs (You have 72 hours) | US | Agriculture and Food Production | 2024-01-23 11:41:27.678372 |
| ANS COMPUTER [72hrs] | BE | Technology | 2024-01-22 13:30:25.258242 |
| Worthen Industries [You have three days] | US | Manufacturing | 2024-01-20 11:50:17.713147 |
| Busse & Busee, PC Attorneys at Law | US | Business Services | 2024-01-19 17:57:29.258578 |
Data from ransomware.live