Ransomware Group:  
Babuk2
 / 
Babuk



Sponsored by Hudson RockUse Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business


Sites | Activity | Worldmap | Victims (66)

Babuk 2.0 by Bjorka


Sites

Favicon Title Type Available Last Visit FQDN Screenshot
Babuk - Leaks site 🔴 2025-02-08 08:20:06.850265 7dikawx73goypgfi4zyo5fcajxwb7agemmiwqax3p54aey4dwobcvcyd.onion N/A

Activity over time

Worldmap

66 Victims

ID flag

INDONESIA TAXPAYER IDENTIFICATION NUMBER (NPWP) 

Company logo
Ransomware Group:

Discovery Date: 2025-01-28 18:12

INDONESIA TAXPAYER IDENTIFICATION NUMBER (NPWP)

Victim:   |  Group: 
ID flag

MYINDIHOME TELKOM INDONESIA by ( Babuk Locker ) 

Company logo
Ransomware Group:

Discovery Date: 2025-01-28 16:03

MYINDIHOME TELKOM INDONESIA

Victim:   |  Group: 
ID flag

MYINDIHOME TELKOM INDONESIA 

Company logo
Ransomware Group:

Discovery Date: 2025-01-28 15:13

MYINDIHOME TELKOM INDONESIA

Victim:   |  Group: 
ID flag

MYPERTAMINA INDONESIA 

Company logo
Ransomware Group:

Discovery Date: 2025-01-28 05:56

Sector: Energy
MYPERTAMINA INDONESIA

Victim:   |  Group: 
BR flag

copral.com.br 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 11:39

Greetings! copral.com.br Today we are posting here the new company, "Copral Comercio e Navegacao LTDA".

copral.com.br has been previously claimed by Lockbit3 for an attack estimated on 2024-11-14.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
DE flag

human.de 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 08:30
Estimated Attack Date: 2021-02-01

Sector: Technology
HUMAN, founded in 1972, is a Germany based privately owned company which develops, manufactures and distributes a wide range of IVD Diagnostics and laboratory equipment.

Victim:   |  Group: 
US flag

bocagroup.com 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 08:27
Estimated Attack Date: 2021-02-01

Sector: Not Found
As America's premier elevator and escalator consulting company, BOCA Group is the partner of choice for the biggest and best-known building owners and developer

Victim:   |  Group: 
SE flag

alentec.com 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 08:25

This is a public request for Alentec & Orion AB, you don't have much time left to get in touch with us and help you resolve your security problems, we also continue to be in your networks and monitor you

Victim:   |  Group: 
DE flag

Württemberger Medien 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 08:23

Sector: Not Found
Lassen Sie sich kostenlos von unseren Experten aus Stuttgart beraten. Digitalisierung geht schnell und einfach - Wir haben Lösungen für den Mittelstand!

Victim:   |  Group: 
BR flag

viacaojacarei.com.br 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 08:21

viacaojacarei.com.br

viacaojacarei.com.br has been previously claimed by Lockbit3 for an attack estimated on 2025-01-13.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
BR flag

gelco-s-a.com.br 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 08:19

gelco-s-a.com.br

gelco-s-a.com.br has been previously claimed by Lockbit3 for an attack estimated on 2025-01-13.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
PY flag

Kurosu & Co.SA - kurosu.com.py 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 08:17

Kurosu & Co.SA - kurosu.com.py LEAKED

Kurosu & Co.SA - kurosu.com.py has been previously claimed by Funksec for an attack estimated on 2024-12-10.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
MX flag

zapopan.gob.mx 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 08:16

zapopan.gob

zapopan.gob.mx has been previously claimed by Funksec for an attack estimated on 2025-01-13.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
JO flag

carc.gov.jo 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 08:14

carc.gov

carc.gov.jo has been previously claimed by Funksec for an attack estimated on 2025-01-09.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
CO flag

nhbg.com.co 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 08:13

Sector: Not Found
nhbg

nhbg.com.co has been previously claimed by Lockbit3 for an attack estimated on 2024-09-04.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
US flag

APMS ( Advanced Physician Management Service LLC 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 08:12

Sector: Healthcare
APMS ( Advanced Physician Management Service LLC

Victim:   |  Group: 
 flag

a top-tier law firm in Workers Compensation Defense! 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 08:10

a top-tier law firm in Workers Compensation Defense!

Victim:   |  Group: 
US flag

precisediagnosticspacs.com 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 08:09

Sector: Healthcare
precisediagnosticspacs.com

precisediagnosticspacs.com has been previously claimed by Funksec for an attack estimated on 2024-12-09.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
KE flag

zetech.ac.ke 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 08:08

Sector: Education
zetech.ac.ke

zetech.ac.ke has been previously claimed by Funksec for an attack estimated on 2024-12-14.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
 flag

maxprofit.mcode.me 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 08:07

Sector: Not Found
maxprofit.mcode.me

maxprofit.mcode.me has been previously claimed by Funksec for an attack estimated on 2024-12-14.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
MK flag

skopje.gov.mk 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 08:06

skopje.gov.mk

skopje.gov.mk has been previously claimed by Funksec for an attack estimated on 2024-12-14.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
MN flag

rtdc.gov.mn 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 08:05

rtdc.gov.mn access

rtdc.gov.mn has been previously claimed by Funksec for an attack estimated on 2024-12-17.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
PK flag

pbos.gov.pk 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 08:04

pbos.gov.pk

pbos.gov.pk has been previously claimed by Funksec for an attack estimated on 2024-12-17.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
SP flag

abd-ong.org 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 08:02

Sector: Not Found
abd-ong.org

abd-ong.org has been previously claimed by Funksec for an attack estimated on 2024-12-18.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
UZ flag

mtgazeta.uz 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 08:01

Sector: Not Found
mtgazeta.uz

mtgazeta.uz has been previously claimed by Funksec for an attack estimated on 2024-12-06.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
BR flag

sincorpe.org.br 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 08:00

Sector: Not Found
sincorpe.org.br

sincorpe.org.br has been previously claimed by Funksec for an attack estimated on 2024-12-09.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
DE flag

pti.agency 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:58

Sector: Not Found
pti.agency

pti.agency has been previously claimed by Funksec for an attack estimated on 2024-12-09.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
US flag

singularanalysts.com 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:57

Sector: Technology
singularanalysts.com

singularanalysts.com has been previously claimed by Funksec for an attack estimated on 2024-12-10.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
US flag

gervetusa.com 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:56

Sector: Healthcare
gervetusa.com

gervetusa.com has been previously claimed by Funksec for an attack estimated on 2024-12-10.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
ZM flag

workers.com.zm 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:55

Sector: Not Found
workers.com.zm

workers.com.zm has been previously claimed by Funksec for an attack estimated on 2024-12-10.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
AU flag

wacer.com.au 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:54

wacer.com.au

wacer.com.au has been previously claimed by Funksec for an attack estimated on 2024-12-10.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
US flag

thebetareview.com 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:51

Sector: Technology
thebetareview.com

thebetareview.com has been previously claimed by Funksec for an attack estimated on 2024-12-10.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
 flag

senseis.xmp.net 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:50

Sector: Not Found
senseis.xmp.net

senseis.xmp.net has been previously claimed by Funksec for an attack estimated on 2024-12-10.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
AU flag

fpsc-anz.com 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:48

Sector: Not Found
fpsc-anz.com

fpsc-anz.com has been previously claimed by Funksec for an attack estimated on 2024-12-10.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
IN flag

mandiricoal.net 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:47

Sector: Energy
mandiricoal.net

mandiricoal.net has been previously claimed by Funksec for an attack estimated on 2024-12-11.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
IN flag

dealplexus.com 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:46

dealplexus.com

dealplexus.com has been previously claimed by Funksec for an attack estimated on 2024-12-11.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
US flag

bee-insurance.com 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:45

bee-insurance.com

bee-insurance.com has been previously claimed by Funksec for an attack estimated on 2024-12-13.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
CO flag

lamundialdeseguros.com 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:44

lamundialdeseguros.com

lamundialdeseguros.com has been previously claimed by Funksec for an attack estimated on 2024-12-13.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
US flag

indianaerospaceandengineering.com 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:42

indianaerospaceandengineering.com

Victim:   |  Group: 
 flag

gstpam.org 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:41

Sector: Not Found
gstpam.org

gstpam.org has been previously claimed by Funksec for an attack estimated on 2024-12-15.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
BR flag

www.shootinghouse.com.br 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:40

Sector: Not Found
www.shootinghouse.com.br

www.shootinghouse.com.br has been previously claimed by Ransomhub for an attack estimated on 2024-02-28.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
US flag

headwaterco.com 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:38

Sector: Technology
headwaterco.com

headwaterco.com has been previously claimed by Ransomhub

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
RO flag

www.al-shefafarm.ro 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:36

www.al-shefafarm.ro

www.al-shefafarm.ro has been previously claimed by Ransomhub for an attack estimated on 2024-02-23.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
BR flag

www.ykp.com.br 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:35

Sector: Technology
www.ykp.com.br

www.ykp.com.br has been previously claimed by Ransomhub for an attack estimated on 2024-02-07.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
 flag

www.go4kora.tv 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:34

Sector: Not Found
www.go4kora.tv

www.go4kora.tv has been previously claimed by Ransomhub for an attack estimated on 2024-03-09.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
MY flag

www.rekamy.com 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:33

Sector: Technology
www.rekamy.com

www.rekamy.com has been previously claimed by Ransomhub for an attack estimated on 2024-03-08.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
US flag

www.dvttechnologyltd.com 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:32

Sector: Technology
www.dvttechnologyltd.com

www.dvttechnologyltd.com has been previously claimed by Ransomhub for an attack estimated on 2024-03-08.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
SK flag

www.siea.sk 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:31

Sector: Energy
www.siea.sk

www.siea.sk has been previously claimed by Ransomhub for an attack estimated on 2024-03-07.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
BR flag

www.spmundi.com.br 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:30

www.spmundi.com.br

www.spmundi.com.br has been previously claimed by Ransomhub for an attack estimated on 2024-03-07.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
ID flag

www.merchant.id 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:28

www.merchant.id

www.merchant.id has been previously claimed by Ransomhub for an attack estimated on 2024-03-06.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
US flag

www.cyncsolutions.com 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:27

Sector: Technology
www.cyncsolutions.com

www.cyncsolutions.com has been previously claimed by Ransomhub for an attack estimated on 2024-04-09.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
US flag

Baca County Feedyard, Inc 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:26

Baca County Feedyard, Inc

Baca County Feedyard, Inc has been previously claimed by Ransomhub for an attack estimated on 2024-04-09.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
CA flag

www.skywaycoach.ca 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:25

www.skywaycoach.ca

www.skywaycoach.ca has been previously claimed by Ransomhub for an attack estimated on 2024-04-08.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
IT flag

www.farmaciaflorio.com 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:24

Sector: Healthcare
www.farmaciaflorio.com

www.farmaciaflorio.com has been previously claimed by Ransomhub for an attack estimated on 2024-04-08.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
GB flag

www.nrshealthcare.com 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:23

Sector: Healthcare
www.nrshealthcare.com

www.nrshealthcare.com has been previously claimed by Ransomhub for an attack estimated on 2024-04-07.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
US flag

www.hcisystems.net 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:22

Sector: Technology
www.hcisystems.net

www.hcisystems.net has been previously claimed by Ransomhub for an attack estimated on 2024-04-06.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
US flag

www.betteraccountingsolutions.com 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:20

www.betteraccountingsolutions.com

www.betteraccountingsolutions.com has been previously claimed by Ransomhub for an attack estimated on 2024-04-06.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
IT flag

www.aretusamilano.it 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:19

Sector: Not Found
www.aretusamilano.it

www.aretusamilano.it has been previously claimed by Ransomhub for an attack estimated on 2024-04-04.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
BR flag

www.agenciahost.com 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:18

www.agenciahost.com

www.agenciahost.com has been previously claimed by Ransomhub for an attack estimated on 2024-04-03.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
SV flag

www.constelacion.com.sv 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:17

Sector: Technology
www.constelacion.com.sv

www.constelacion.com.sv has been previously claimed by Ransomhub for an attack estimated on 2024-04-02.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
NO flag

www.avantit.no 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:16

Sector: Technology
www.avantit.no

www.avantit.no has been previously claimed by Ransomhub for an attack estimated on 2024-03-28.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
CO flag

www.industrialdealimentos.com 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:14

www.industrialdealimentos.com

www.industrialdealimentos.com has been previously claimed by Ransomhub for an attack estimated on 2024-03-20.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
BR flag

www.lapastina.com 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:13

www.lapastina.com

www.lapastina.com has been previously claimed by Ransomhub for an attack estimated on 2024-03-20.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
MY flag

www.kovra.com.my 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:12

Sector: Not Found
www.kovra.com.my

www.kovra.com.my has been previously claimed by Ransomhub for an attack estimated on 2024-03-12.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
CA flag

www.computan.com 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:11

Sector: Technology
www.computan.com

www.computan.com has been previously claimed by Ransomhub for an attack estimated on 2024-03-11.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: 
US flag

www.scadea.com 

Company logo
Ransomware Group:

Discovery Date: 2025-01-27 07:09

Sector: Technology
www.scadea.com

www.scadea.com has been previously claimed by Ransomhub for an attack estimated on 2024-03-10.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-01-27

Victim:   |  Group: