DETECTO/ThreatDossier
DashboardPricingThreatsRun Free ScanSign In
DETECTO/ThreatDossier

Security intelligence for MSPs, consultants, and businesses. Find breached credentials, compliance gaps, and exposed infrastructure before attackers do.

Product

  • Scan a Domain
  • Pricing
  • Dashboard
  • Sign In

Resources

  • Threat Intelligence
  • Ransomware Groups

Legal

  • Privacy Policy
  • Terms of Service

© 2026 DETECTO. All rights reserved.

Threats/Groups/Ms13089

Ms13089

Active

ms13089

First seen: 2025-12-18T09:54:49.187306+00:00Total victims: 4

MS13089 is a newly emerged ransomware group (first observed December 2025) that named itself after a 2013 Microsoft Security Bulletin, claiming a handful of victims including a law firm, operating primarily as a double-extortion actor.

0Total Victims
0Countries Targeted
0Sectors Targeted
0Avg Attacks/Month

Activity Timelinelast 24 months

Top Targeted Sectors

Top Targeted Countries

Recent Victimsshowing 4 of 4

NameCountrySectorDate
brittanyresidential.comUSConsumer Services2026-05-05T11:53:39.404312+00:00
sjl-legal.comLUBusiness Services2026-01-15T23:17:12.348509+00:00
dgpcommercialisti.itITBusiness Services2025-12-18T09:55:42.738988+00:00
uro.comDEHealthcare2025-12-18T09:54:49.187306+00:00

Data from ransomware.live