DarkFeed @ido_cohen2 Twitter profile

Pinned Tweet

DarkFeed

2 months

We're excited to announce that we've enhanced and redesigned our #CTI intelligence system to be more user-friendly and efficient, offering deep insights into the cyber threat landscape. With real-time monitoring of #ransomware groups and cyber attack trends, our platform

1

0

5

Last Seen Profiles

@hyucksouI

@ya71742

@notzerodearie

@MJAYSFOOTBALL

@peterwintrsmith

@JustEfe

@latentspace_

@Likkkyyyy

@twhsstuco_

@AlakayProd

@advelanch

@Zulzamani_

@raeki_to

@joeypoolart

@Tycoon952730678

@vampyposting

@4__tayra

@MariaBetniad

@GameUnionTV

@loloistanbulnn

@furi0804

@bokeplokalmalam

@ai7901583626278

@konyagizlierkek

@Ch_JesusChrist

@Gothamist

@PaniniManga

@kavitha129

@mcc_aaliy

@Parkerwx03

@bokeplokalmalam

@SVESHEKHER

@wielerrevue

@m_richad97

@vonniebonniee

@ToghoMugV

DarkFeed

@ido_cohen2

2 years

🌐Lockbit #Ransomware paid the first $50K Bug bounty 💸 It was possible to decrypt any VMDK/VHDX file that was encrypted by Lockbit. So they got inside information related to some FBI agents, they were able to find out about the weakness in encryption and fixed it #Lockbit

16

235

842

DarkFeed

@ido_cohen2

1 year

🇮🇱 Even though our team is in a war zone, we are doing our best to continue providing our customers with quality cyber intelligence 👷‍♂️ Thanks to everyone who asked and was interested in the safety of our team 🙏

13

50

504

DarkFeed

@ido_cohen2

2 years

🌐 A new #ransomware attack is spreading like crazy 🚨 Many VMware ESXi servers got encrypted in the last hours with this ransom note 🧐 What's interesting is that the bitcoin wallet is different in every ransom note. No website for the group, only TOX id 👀

29

178

421

DarkFeed

@ido_cohen2

2 years

🌐 Medusa Blog #ransomware team added Kenya Airports Authority to the victims list 🚨 #MedusaBlog

24

145

234

DarkFeed

@ido_cohen2

2 years

🌐 RansomEXX #ransomware team added Ferrari To the victim's list 🚨 RansomEXX claims to have stolen over 7G of data from the Ferrari company, The attack is published only 4 days after the announcement of the partnership between Ferrari #formula1 and Bitdefender 🏎️ #RansomEXX

5

102

229

DarkFeed

@ido_cohen2

2 years

🌐 Lockbit #Ransomware team just added @Mandiant to the victim list 🚨 #Lockbit

13

78

193

DarkFeed

@ido_cohen2

2 years

🌐 #Lockbit team gives the decryptor for free to Canadian hospital 🚨 "We formally apologize for the attack on SickKids and give the decryptor for free, the partner who attacked this hospital violated our rules, is blocked and is no longer in our affiliate program"👁️ #Ransomware

2

60

188

DarkFeed

@ido_cohen2

8 months

🌐 Guess who's back, back again 👀 Lockbit is back with a new domain and a new website. #Lockbit

4

48

170

DarkFeed

@ido_cohen2

2 years

🚨 After the Conti Leaks, This time Yanluowang Leaks? @yanluowangleaks This user on Twitter posted in the last few hours what appears to be the internal chat of Yanluowang #Ransomware team 🧭 #Yanluowang @vxunderground

4

60

156

DarkFeed

@ido_cohen2

2 years

🌐 You should be careful with your Cobalt Strike 👀 a critical #XSS vulnerability that allows an attacker to set a malformed username in the Beacon configuration, allowing them to remotely execute code 🥷 (CVE-2022-39197) #RCE

1

58

155

DarkFeed

@ido_cohen2

9 months

🌐 Lockbit #ransomware team added a huge sandwich chain with $19.3 Billion in revenue from the United States 🚨 Lockbit claims to have managed to steal thousands of documents and classified information by hacking into the company's network. Lockbit gives about 12 days for

26

31

146

DarkFeed

@ido_cohen2

2 years

🌐 In the interview that @vxunderground did with a ransomware operator they talk about money, fear, and life itself showing the story of the people behind the #ransomware groups 🧐 "I don't fear the FBI, I fear Mandiant" (RWO-09-26)

2

39

134

DarkFeed

@ido_cohen2

1 year

Top Active #Ransomware Groups August🎯 -Lockbit: 122 🔺 -BlackCat: 32 🔺 -8Base: 28 🔻 -CloAk: 24 🆕 -Akira: 21 🔺 -Black Basta: 21 🔺 -No Escape: 20 🔺 -Medusa Blog: 12 🔺 -Play: 12 🔺 -Arvin: 11 🆕 (Updated) Total Victims: 396 🔻 More Info:

3

33

125

DarkFeed

@ido_cohen2

2 years

🌐 Hive #Ransomware team website seized and shut down 🚨 #Hive

2

40

122

DarkFeed

@ido_cohen2

1 year

🌐 Crazy, In the last 48 hours, Sixty six new #ransomware attacks were added to our platform 🎯 Top Active Groups: - CLOP: 26 💥 (MoveIt) - 8Base: 8 - Snatch: 7 🔺 - Lockbit: 5 🔻 - BlackByte: 4 🔺 - NoEscape: 3 🆕 - BlackCat: 3 - Qilin: 2 ➡️ More Info:

5

43

110

DarkFeed

@ido_cohen2

2 years

🌐 Yanluowang #Ransomware team add CISCO to the victim's list 🚨 The group shares a TXT file with all the stolen files, a Total of 82G of data, looks bad 🧐 #Yanluowang

7

46

104

DarkFeed

@ido_cohen2

2 years

🌐 DarkBit #Ransomware team hit the Israel Institute of Technology ( @TechnionLive ) and probably encrypted the entire computer network 🚨 This is the note at the entrance today morning: "We are under cyber attack Please unplug all computers" 📢 #DarkBit

3

31

94

DarkFeed

@ido_cohen2

2 years

🌐 5 Hours ago unknown threat actor updated one of @pypi packages with CIA #Ransomware 🚨 the package "requdsts 2.28.1" contain request[.]py that is updated to download and execute a payload from the IP 35.235.126.33 (⛔️) 👀 IOCs and More Info ➡️ #CIA

2

37

90

DarkFeed

@ido_cohen2

2 years

🌐 A new player enters the game? 👀 Endurance #Ransomware just spotted, website is under development 🚨 #Endurance

2

24

92

DarkFeed

@ido_cohen2

2 years

🌐 After 28 days without any new victims, most of Conti #Ransomware infrastructure is down 🚨 This is the end? or a new start? 🧐 #Conti

5

29

84

DarkFeed

@ido_cohen2

2 years

🌐 DarkFeed project is going to be active soon, but with some changes: From now on, DarkFeed only tracks the group's victims website, the system does not collect information from infrastructure and support chat pages. #Ransomware

8

20

83

DarkFeed

@ido_cohen2

2 years

🌐 It doesn't happen a lot, but it looks like all of Lockbit's #ransomware team infrastructure is down 🧐 #Lockbit

9

17

85

DarkFeed

@ido_cohen2

1 year

🌐 Lockbit #Ransomware team go crazy again 🚨 In the last 24 hours, Lockbit added 28 new victims. Small companies, large organizations, government organizations and more are just some of Lockbit's latest wave of #cyber attacks 👁️ ➡️ More Info: #Lockbit

0

24

79

DarkFeed

@ido_cohen2

1 year

Top Active #Ransomware Groups July🎯 -CLOP: 170 🔺 ( #MoveIt ) -Lockbit: 48 🔻 -8Base: 36 🔻 -Play: 32 🔻 -BlackCat: 27 🔻 -BianLian: 19 🔺 -Cactus: 18 🆕 -Akira: 15 🔻 -NoEscape: 14 🔺 -Rhysida:13 🔻 -Donut: 10🔺 Total Victims: 399 🔺 More Info:

4

40

82

DarkFeed

@ido_cohen2

2 years

🌐Last Week #Ransomware Statistics 🧮 ➡️ Top Targeted Countries: 🇺🇸 USA: 34 🇬🇧 UK: 5 🇫🇷 France: 4 🇦🇪 UAE: 3 🇦🇺 Australia: 3 🇮🇱 Israel: 2 ➡️ Top Active Groups: - Lockbit: 27 - Medusa Blog: 12 🆕 - BianLian: 6 - Royal: 5 - Avos: 3 - Black Cat: 3 Total Victims : 75 🔺 Hits Map:

1

29

78

DarkFeed

@ido_cohen2

2 years

🌐 Lockbit #Ransomware team added Continental to the victims list 🚨 Continental offers technologies and engineering solutions for vehicles, machines, traffic, and transportation with $36 Billion in revenue from Germany 🇩🇪 #Lockbit

3

36

79

DarkFeed

@ido_cohen2

2 years

🌐 BlackCat #Ransomware team claims to hack into an Indian 🇮🇳 company that is manufacturing ammunition for military applications 🚨 BlackCat also published photos from the company's security cameras on their website 🎦 "MORE THAN 2TB SECRET MILITARY DATA LEAKED" #BlackCat

1

39

76

DarkFeed

@ido_cohen2

2 years

🌐 Hive #Ransomware V5 file decryptor 🚨 #Hive

0

23

77

DarkFeed

@ido_cohen2

2 years

🌐 ESXiArgs #Ransomware continues to spread. So far over 600 infected servers have been located all over the world 👁‍🗨 Updated Targeted Countries: 🇫🇷 France: 188 🇩🇪 Germany: 91 🇺🇸 USA: 69 🇨🇦 Canada: 61 🇳🇱 Netherland: 34 🇬🇧 UK: 28 🇫🇮 Finland: 21 🇵🇱 Poland: 18 #ESXiArgs

DarkFeed

@ido_cohen2

2 years

🌐 A quick search in @shodanhq shows that the spread is extensive, a total of 327, but we are sure there is more 🧐 The most targeted system is from France 🇫🇷 on OVHcloud and Hetzner hosting. But they have hit other hosting and cloud companies around the world🌎 #Ransomware

2

33

67

2

34

74

DarkFeed

@ido_cohen2

2 years

🌐 REvil #Ransomware team website right now, All the victims have disappeared and the blog is empty 🧐 This comes just a few days after REvil leaked the data of the Medibank hack 🧭 #REvil

3

22

74

DarkFeed

@ido_cohen2

2 years

🌐 #Ransomware Groups Statistics December 2022: - Lockbit: 56 🔺 - BlackCat: 32 🔺 - Royal: 31 🔻 - Black Basta: 20 - Bian Lian: 19 🔺 - Play: 16 🔺 - Hive: 14 🔺 - nSafe: 8 (New Group) - Cuba: 6 🔺 - Vice: 6 🔻 #Lockbit returns to first place 🥇 Total Victims: 257🔺(Nov 244)

2

35

74

DarkFeed

@ido_cohen2

2 years

🌐 Karakurt #Ransomware team updated about an unknown victim from the automotive industry with $350 million in revenue 🧐 Guess who..? #Karakurt

7

20

65

DarkFeed

@ido_cohen2

2 years

🌐 What happened to Lockbit? Lockbit attack rate dropped by more than half in October. Last month, on the same day of the month, they had more than 80 victims, currently, they have a little more than 30 🧭 #Lockbit

10

16

71

DarkFeed

@ido_cohen2

2 years

🌐 A quick search in @shodanhq shows that the spread is extensive, a total of 327, but we are sure there is more 🧐 The most targeted system is from France 🇫🇷 on OVHcloud and Hetzner hosting. But they have hit other hosting and cloud companies around the world🌎 #Ransomware

DarkFeed

@ido_cohen2

2 years

🌐 A new #ransomware attack is spreading like crazy 🚨 Many VMware ESXi servers got encrypted in the last hours with this ransom note 🧐 What's interesting is that the bitcoin wallet is different in every ransom note. No website for the group, only TOX id 👀

29

178

421

2

33

67

DarkFeed

@ido_cohen2

2 years

🌐BlackCat #Ransomware team added UNISYS to the victim's list 🚨 Unisys is an IT company that builds secure, modern digital platforms. The company's services provided include cybersecurity and digital government with $2 billion in revenue from The United States 🇺🇸 #ALPHV

3

23

66

DarkFeed

@ido_cohen2

2 years

🌐 Everest #Ransomware team just added The Brazil Government to the victim's list 🚨 Everest selling access to Gov Brazil network, "more than 3 TB of data" 🇧🇷 #Everest

1

21

62

DarkFeed

@ido_cohen2

2 years

🇮🇱 Another #Cyberattack hit big Israeli target 🚨 RotterNet ( @RotterNet ) website was hacked and defaced by ALTOUFAN TEAM, Rotter is a large Israeli website for current affairs and politics #ALTOUFANTEAM

6

24

62

DarkFeed

@ido_cohen2

2 years

🌐 it is not a bug, #Lockbit go crazy and added 10 new victims 🚨 One of the victims is a huge food company with $253 million in revenue from Romania 🇷🇴 Lockbit also added another victim from Israel 🇮🇱 #Lockbit with a total of 1364 victims 🧮

5

19

61

DarkFeed

@ido_cohen2

2 years

🌐 #Ransomware Groups Statistics February 2023: - Lockbit: 130 🔺 - BlackCat: 28 🔺 - Medusa Blog: 18 🆕 - Royal: 16 - Bian Lian: 12 🔺 - Play: 7 - Avos: 6 🔻 - Ransom House: 5 🔺 Total Victims: 250 🔺 (Jan 170) #Lockbit breaks all records with a total of 1487 victims 💥

4

20

63

DarkFeed

@ido_cohen2

2 years

🌐 DarkFeed #Ransomware Statistics April 2022: - Lockbit: 72 - Conti: 32 - BlackCat: 15 Total victims: 249

2

13

61

DarkFeed

@ido_cohen2

2 years

🌐 In the last 12 hours, Fourteen new victims were added by serval #ransomware teams 🚨 One of the victims is a huge Indian 🇮🇳 bank with $5.5 billion in revenue 💰 Another victim is a Canadian 🇨🇦 corporation with $514 million in revenue 💸 Hit Map:

10

16

62

DarkFeed

@ido_cohen2

2 years

🌐 Crazy, #Lockbit is the first group to reach 1500 victims 🧮 Lockbit team was added in June 2021, and since then they have been breaking all the records 👀 #Ransomware

1

23

60

DarkFeed

@ido_cohen2

9 months

🌐 It seems that Lockbit #ransomware team hacked into the network of a vast manufacturer from Taiwan (🇹🇼), encrypting the corporate network, stealing Five terabytes of data, and defacing the corporate site 🚨 ➡️ More information on our #CTI Page

13

53

DarkFeed

@ido_cohen2

2 years

🌐 Lockbit #Ransomware team with a new version, new style 👀 and even a bug bounty 🤔 "We've been working since September 3, 2019 2 years 297 days 8 hours" ⏳ #Lockbit

1

24

61

DarkFeed

@ido_cohen2

2 years

🌐 #BlackCat (ALPHV) #Ransomware team changing the rules of the game 🎲 After they updated about a new victim they registered a similar domain (.xyz instead .com) and uploaded all the leaked data, now it is easy and quick to look at the vast information that has been leaked 🧭

2

22

60

DarkFeed

@ido_cohen2

1 year

Top Active #Ransomware Groups June 🎯 - CLOP: 89 🔺 - Lockbit: 67 🔻 - 8Base: 40 🔺 - BlackCat: 38 🔻 - Play: 34 🔺 - Akira: 22 🔺 - Rhysida: 17 💥 - BianLian: 16 🔻 - Snatch: 15 🔺 - Black Basta: 11 🔻 Total Victims: 363 🔺 (May 351) ➡️

2

26

58

DarkFeed

@ido_cohen2

2 years

🌐 There is a ransomware website inside a ransomware website? 😕 Vis Vendetta #Ransomware team website suddenly appeared on Cuba ransomware team domain (test. ❓) 🤔 One victim from France 🇫🇷 on Vis Vendetta List #VisVendetta #Cuba

1

23

59

DarkFeed

@ido_cohen2

2 years

🌐 From now on everyone can access our free dashboard! ➡️ Real-time Statistics 🧮 ➡️ Last Seven days victims Search 🔍 ➡️ Last Ten #ransomware attacks👁‍🗨 ➡️ Total attacks per month ⌛️ ➡️ Top active groups ☢️ ➡️ Join the ride

3

23

59

DarkFeed

@ido_cohen2

2 years

🌐 #Ransomware Groups Statistics November 2022: - Royal: 44 🔺 - Lockbit: 33 🔻 - Medusa Locker: 21 - LV: 16 🔺 - Bian Lian: 15 🔺 - Vice: 11 - BlackCat: 10 🔻 - Play: 9 Total Victims: 244🔺(Oct 231) For the first time, Lockbit is knocked out of first place by #Royal Team 🥇

2

21

60

DarkFeed

@ido_cohen2

2 years

🌐 A gold mine for attackers, Outlook zero-day vulnerability (CVE-2023-23397) 🚨

Microsoft fixes Outlook zero-day used by Russian hackers since April 2022

Microsoft has patched an Outlook zero-day vulnerability (CVE-2023-23397) exploited by a hacking group linked to Russia's military intelligence service GRU to target European organizations.

www.bleepingcomputer.com

0

26

59

DarkFeed

@ido_cohen2

2 years

🌐 Recently, several #ransomware groups have started to publish, in addition to the stolen information, also the negotiations chat between them and the victims 🚨 The conversation that Lorenz published is edited, and only the victim's side appears in them 👁️ #Lorenz #Lockbit

1

19

59

DarkFeed

@ido_cohen2

2 years

🌐 Last Week - #Ransomware Hit Map: 🇺🇸 USA: 23 🇺🇦 Ukraine: 7 🇹🇭 Thailand: 3 🇧🇷 Brazil: 3 🇨🇳 China: 3 🇩🇪 Germany: 3 🇬🇧 UK: 2 🇵🇭 Philippines: 2 🇦🇺 Australia: 2 Total victims in seven days: 62 Three new teams were added: ➡️ Mallox, Free Civilian, Qilin

1

19

57

DarkFeed

@ido_cohen2

1 year

🌐 This Is CLOP day. CLOP #ransomware team added 54 new victims related to the MoveIt hack 🚨 Banks, huge consulting and manufacturing companies, and much more. This is the highest record of victims for one day, the record is still with PYSA 💥 #CLOP

4

19

58

DarkFeed

@ido_cohen2

2 years

🌐 We are happy to announce that we are expanding 🙏 Very soon, we will start cooperating with other cyber companies to provide our users a better service 📢 Stay tuned 👀

0

7

58

DarkFeed

@ido_cohen2

8 months

Top Active #Ransomware Groups February 2024🎯 -Lockbit: 101 🔺 -Hunters: 30 🔺 -BlackCat: 26 🔺 -Black Basta: 24 🔺 -8Base: 24 🔻 -Play: 23 🔺 -BianLian: 20 🔺 -Akira: 15 🔻 -Medusa Blog: 14 🔺 -Qilin: 10 🔺 Total Victims: 372 🔥 ➡️ February 2024 has the highest number of

1

22

57

DarkFeed

@ido_cohen2

2 years

🌐Everest #Ransomware team added @ATT - AT&T to the victim list 🚨 Everest claims it hacked into the AT&T network and is now selling direct access to the company's network 🧭 #Everest

4

27

55

DarkFeed

@ido_cohen2

2 years

🌐 Black Magic the Iranian 🇮🇷 hacking team uses #Ransomware to target Israeli companies 🚨 The group claims to hack and encrypt two large logistics companies in Israel #BlackMagic

1

17

54

DarkFeed

@ido_cohen2

1 year

Last Week #Ransomware Statistics 🎯 ➡️TOP TARGETED COUNTRIES: 🇺🇸USA: 68 🇬🇧 UK: 6 🇫🇷 FR: 5 🇨🇦CA: 5 ➡️TOP TARGETED SECTORS: -Financial: 11 -HealthCare: 10 -Technology: 9 -Education: 8 ➡️TOP ACTIVE TEAMS: -CLOP: 70 -8Base: 9 -Akira: 7 -Play: 5 Total Victims: 133🔺 Hits Map:

1

18

54

DarkFeed

@ido_cohen2

2 years

🌐 Dark Angels #Ransomware team spotted 🚨 The group is very active. So far, there are no victims on the group's website 🧭 #DarkAngels

3

13

52

DarkFeed

@ido_cohen2

2 years

🌐 Lockbit #ransomware team claims that they obtained data about SpaceX after they hacked into another US Company 🚨 "Elon Musk we will help you sell your drawings to other manufacturers - build the ship faster and fly away" #Lockbit

2

18

54

DarkFeed

@ido_cohen2

2 years

🌐 #Ransomware Groups Statistics March 2023: - Lockbit: 99 🔻 - CLOP: 98 🔺💥 - Royal: 32 🔺 - BlackCat: 26 🔻 - Play: 26 🔺 - Black Basta: 20 🔺 - Stormus: 18 🔺 Total Victims: 418 🔺 (Feb 250) CLOP team almost overtook Lockbit this month after the GoAnywhere MFT zero-day 👀

2

16

54

DarkFeed

@ido_cohen2

2 years

🌐 Another supply chain attack by Lockbit #Ransomware team 🚨 Lockbit claims to hack into MercuryIT, an IT company from New Zealand 🇳🇿 Apparently, #Lockbit managed to steal sensitive documents of other companies through the breach of MercuryIT and added them as new victims 👀

2

16

53

DarkFeed

@ido_cohen2

2 years

🌐DarkFeed #Ransomware Groups Statistics September 2022: - Lockbit: 103 - Black Basta: 17 - BlackCat: 17 - Avos Locker: 16 - Hiveleaks: 14 - Sparta: 13 - BlackByte: 6 - Vice: 6 Total Victims: 230🔺(Aug 165) Lockbit is leading with 1157 victims 🥇 Hive: 192🥈 BlackCat: 177🥉

2

29

53

DarkFeed

@ido_cohen2

2 years

🌐 The end of an era, Conti ransomware finally shuts down data leak and negotiation sites 🔚 @BleepinComputer 🗣️

Conti ransomware finally shuts down data leak, negotiation sites

The Conti ransomware operation has finally shut down its last public-facing infrastructure, consisting of two Tor servers used to leak data and negotiate with victims, closing the final chapter of...

www.bleepingcomputer.com

1

15

49

DarkFeed

@ido_cohen2

2 years

🌐 Lockbit #ransomware team publishes another negotiation chat 🚨 "why your director at 82 years old hundreds of millions of dollars? he will not have time to spend them the rest of his life anyway" #Lockbit demanded $7 million 💰 Full chat on our threat intelligence page 👁️

1

10

52

DarkFeed

@ido_cohen2

2 years

🌐 #Ransomware Statistics For 2022: ➡️ Top Groups: - Lockbit: 836 🥇 - BlackCat: 239 🥈 - Conti: 180 🥉 - Hive: 141 - Vice: 101 ➡️ Top Targeted Countries: 🇺🇸 USA: 1056 🥇 🇬🇧 UK: 140 🥈 🇩🇪 Germany: 130 🥉 🇨🇦 Canada: 108 🇫🇷 France: 105 ➡️ More Info:

2

26

52

DarkFeed

@ido_cohen2

2 years

🌐 In the last 24 hours, 16 new victims were added by serval #ransomware teams. The total revenue of all the victims just for today is more than $4.6 Billion 💰 11 victims are from the United States 🇺🇸 ➡️Top Groups: - Lockbit: 9 - BlackCat: 5 - Ragnar Locker: 1 - RansomExx: 1

2

22

51

DarkFeed

@ido_cohen2

2 years

🌐 The Israeli power plant "Orot Yosef" was exploded🚨 Earlier today, ALtahrea the Iranian 🇮🇷 hacking team claimed to hacked into the remote energy management of the power plant and shared the IP address of the EMpro system on their TG channel 🧐 #ALtahrea

7

14

46

DarkFeed

@ido_cohen2

2 years

🌐 In the last 12 hours, Ten new victims were added by serval #ransomware teams. The total revenue of all victims combined is more than $15.5 Billion 💰 🇨🇳 China: $11.5B 🇰🇷 South Korea: $2.9B 🇦🇹 Austria: $1B 🇺🇸 USA: $70M + 1 Government Office 🇦🇺 Australia: $19.2M Hit Map:

0

18

49

DarkFeed

@ido_cohen2

2 years

🌐 REvil (Sodinokibi) #Ransomware team added Medibank to the victims list 🚨 Medibank is an integrated healthcare provider of private health insurance and health solutions with $5 billion in revenue from Australia 🇦🇺 #REvil #Sodinokibi

2

19

49

DarkFeed

@ido_cohen2

2 years

🌐Last Week #Ransomware Statistics 🧮 ➡️ Top Targeted Countries: 🇺🇸 USA: 22 🇬🇧 UK: 5 🇨🇦 Canada: 4 🇦🇺 Australia: 3 🇲🇽 Mexico: 3 ➡️ Top Active Groups: - Lockbit: 42 💥 (New record in one week) - Vice: 8 - BlackCat: 5 - Royal: 4 - Play: 2 Total Victims in 7 Days: 59 Hits Map:

4

16

47

DarkFeed

@ido_cohen2

2 years

🌐 #Ransomware Groups Statistics October 2022: - Lockbit: 60 - Karakurt: 28 - Black Basta: 23 - BlackCat: 20 - BianLian: 14 - Vice: 10 - Ragnar: 8 - BlackByte: 7 Total Victims: 231🔺(Sep 230) ➡️ Last month Lockbit had 103 victims 🔻 ➡️ Karakurt increases the attack rate 🔺

1

17

49

DarkFeed

@ido_cohen2

1 year

🌐 Last Week #Ransomware Statistics🎯 TOP TARGETED COUNTRIES: 🇺🇸 USA: 52 🇬🇧 UK: 11 🇫🇷 France: 5 🇩🇪 Germany: 4 🇨🇦 Canada: 4 TOP ACTIVE GROUPS: -Play: 24 -CLOP: 23 -Akira: 12 -BlackCat: 9 -8Base: 8 Total Victims: 118 The first week that #Lockbit is not on this list 👁‍🗨 Hits Map:

2

18

47

DarkFeed

@ido_cohen2

2 years

🌐 IceFire #Ransomware team just added to DarkFeed groups page 🚨 Nine active victims on the group website, weird, most companies are from unusual countries like: Turkey 🇹🇷 Pakistan 🇵🇰 Morocco 🇲🇦 🧐 ➡️ #IceFire

1

18

46

DarkFeed

@ido_cohen2

1 month

🌐 Top #Ransomware Groups of 2024: The Most Active Threat Actors So Far, with two groups currently battling for the second spot on the leaderboard 🧮 ➡️ Lockbit: 533 🥇 ➡️ Ransomhub: 257 🥈 ➡️ Play: 226 🥉 ➡️ Akira: 155 ➡️ Hunters: 151 ➡️ Medusa Blog: 140 🔺 ➡️ Black

2

21

47

DarkFeed

@ido_cohen2

2 years

🌐Black Reward hacking team claim that they hacked into @PressTV 🚨 'PressTV is an Iranian state-owned news network that broadcasts the Islamic Republic's propaganda and spreads dis/misinformation" 🇮🇷 Black Reward published more than 5K emails from their internal network 🧭

0

23

41

DarkFeed

@ido_cohen2

2 years

🌐 The new website (Version 3.0) of Lockbit #Ransomware team allows anyone to extend the timer by 24 hours, destroy all data from the website, or download all data right away to maximize the ransom money for each victim 💸 Next level hacking group 🥷 #Lockbit

0

16

46

DarkFeed

@ido_cohen2

2 years

🌐 This day is all #Lockbit 🔐 The group added 18 new victims: 🇺🇸 USA: 5 🇪🇸 Spain: 2 🇧🇷 Brazil: 2 🇨🇷 Costa Rica: 1 🇮🇹 Italy: 1 🇯🇵 Japan: 1 🇲🇽 Mexico: 1 🇦🇷Argentina: 1 🇹🇼 Taiwan: 1 🇨🇭 Switzerland: 1 🇺🇾 Uruguay: 1 🇫🇷 France: 1 Lockbit Hit Map:

1

19

44

DarkFeed

@ido_cohen2

2 years

🌐 I didn't think it was possible but Lockbit is increasing the attack rate 🚨 Sixteen victims were added by Lockbit in the last 24 hours. most of the victims are from the United States 🇺🇸 two are from Netherlands 🇳🇱 #Lockbit

4

23

45

DarkFeed

@ido_cohen2

2 years

Last Week #Ransomware Statistics 🧮 ➡️ Top Targeted Countries: 🇺🇸 USA: 36 🇩🇪 Germany: 5 🇨🇦 Canada: 5 🇬🇧 UK: 3 🇮🇱 Israel: 2 🇧🇷 Brazil: 2 ➡️ Top Active Groups: - Lockbit: 26 - Royal: 16 - Dark Power: 10 🆕 - Medusa Blog: 5 - Black Cat: 7 - Play: 5 Total Victims: 82 🔺 Hits Map:

4

10

45

DarkFeed

@ido_cohen2

1 year

🌐 And it's still going, Lockbit #ransomware team with a victim blitz. 23 new victims were added in the last 24 hours 🚨 Top Targeted Countries: 🇺🇸 USA: 8 🇮🇱 Israel: 3 🇩🇪 Germany: 2 🇪🇸 Spain: 2 🇦🇪 UAE: 1 🇧🇷 Brazil: 1 🇹🇷 Turkey: 1 🇨🇦 Canada: 1 🇲🇽 Mexico: 1 🇫🇷 France: 1 #Lockbit

DarkFeed

@ido_cohen2

1 year

🌐 Crazy weekend in the #Ransomware world 🚨 ➡️ BlackCat releases statement regarding the MGM attack and fake news 🐈‍⬛ ➡️ Ragnar Locker updated about a very high-volume target 🇮🇱 ➡️ Clone of the 8Base team site was found on darknet called CryptBB👀 ➡️

1

16

37

0

15

45

DarkFeed

@ido_cohen2

2 years

🌐 Another hit in the #Formula1 World 🚨 Royal #Ransomware team added @SilverstoneUK to the victims list 🚨 Maybe they are planning Ransomware Grand Prix? 🏎️ #Royal

1

22

44

DarkFeed

@ido_cohen2

2 years

🌐 BREAKING: We've got nothing to announce, so here's a photo of Messi. ⚽️

1

6

45

DarkFeed

@ido_cohen2

2 years

🌐 Lockbit #ransomware team added the Ministry of Commerce and Industry of Kuwait(🇰🇼) to the victims list 🚨 #Lockbit

1

20

44

DarkFeed

@ido_cohen2

18 days

🌐 Europol, NCA, and FBI strike again, claiming they have taken down key members of the LockBit #ransomware group and even disrupted parts of their infrastructure 🚨 Law enforcement is playing their own game and continuing with Operation Cronos 🥷 More info on our CTI page

1

9

43

DarkFeed

@ido_cohen2

2 years

🌐Last Week #Ransomware Statistics 🧮 ➡️ Top Targeted Countries: 🇺🇸 USA: 34 🇮🇹 Italy: 5 🇨🇦 Canada: 4 🇫🇷 France: 3 🇬🇧 UK: 3 🇧🇷 Brazil: 2 ➡️ Top Active Groups: - Lockbit: 40 - Black Cat: 7 - Royal: 5 - BianLian: 5 - Medusa Blog: 4 - Mallox: 3 Total Victims : 68 🔻 Hits Map:

1

14

43

DarkFeed

@ido_cohen2

1 year

🌐 #Ransomware Groups Statistics May 2023: - Lockbit: 77 🔻 - BlackCat: 42 🔻 - Royal: 31 🔺 - Play: 23 🔺 - BianLian: 22 🔺 - Akira: 21 🔺 - Medusa: 14 🔺 - Black Basta: 12 🔻 - Trigona: 10 🔺 - 8Base: 9 🆕 Total Victims: 351 (April 347) 🔺 ➡️

0

8

43

DarkFeed

@ido_cohen2

2 years

🌐 #Ransomware Groups Statistics January 2023: - Lockbit: 51 - Vice: 21 - BlackCat: 20 - Royal: 20 - Play: 10 - Avos: 7 -Mallox: 7 - BlackByte: 6 - HiveLeaks: 3 Total Victims: 170🔻(Dec 257) Maybe the last time for Hive team under this name? Hive ended up with 220 victims 🧮

1

21

44

DarkFeed

@ido_cohen2

9 months

🌐 From now on, the weekly #Ransomware live statistics are open to everyone: 🎯 ➡️TOP TARGETED COUNTRIES: 🇺🇸 USA: 19 🇸🇬 Singapore: 1 🇦🇺 Australia: 1 🇬🇧 UK: 1 🇧🇷 Brazil: 1 🇸🇦 Saudi Arabia: 1 🇫🇷 France: 1 ➡️TOP TARGETED SECTORS: Business Services: 9

0

13

44

DarkFeed

@ido_cohen2

8 months

🌐 #Lockbit #ransomware team website:

2

10

42

DarkFeed

@ido_cohen2

5 months

🌐 #Lockbit ransomware group strikes again with a massive blitz, announcing over 50 victims in just the last hour 🚨 The victims list includes NASDAQ-listed firms, major corporations, financial institutions, and tech companies. Notably, some victims had been previously targeted

2

19

43

DarkFeed

@ido_cohen2

2 years

🌐 BlackCat #Ransomware team added the Central Bank of The Gambia 🚨 "Central Bank of The Gambia has an extremely low degree of data protection. Because of this, we received more than 2TB of sensitive data" #Blackcat

3

23

42

DarkFeed

@ido_cohen2

1 year

Top Active #Ransomware Groups September🎯 -Lockbit: 65 🔻 -BlackCat: 40 🔺 -Play: 25 🔺 -Cactus: 21 🔺 -No Escape: 20 -8Base: 17 🔻 -Medusa Blog: 12 -Knight: 11 🔺 -Ransomed: 10 🔻 -ThreeAM: 9 🔺 Total Victims: 343 🔻 More Info:

0

8

42

DarkFeed

@ido_cohen2

1 year

🌐 As they promised, Today CLOP #ransomware team uploaded an insane amount of stolen data of #MoveIt victims to their leak site 🚨 ➡️ More info on our #CTI page 👀 #CLOP

1

10

41

DarkFeed

@ido_cohen2

2 years

🌐 Monti #Ransomware team just added the first victim 🚨 The victim is a transit agency charged with regional financial oversight, funding, and transit planning for Chicago 🇺🇸 #Monti

2

17

42

DarkFeed

@ido_cohen2

2 years

🌐 Lockbit #Ransomware team added 9 new victims 🚨 One of the victims is the Department of Finance of the State of California 🇺🇸 #Lockbit

1

18

40

DarkFeed

@ido_cohen2

2 years

🌐First week of the year #ransomware statistics 🧮 ➡️ Top Targeted Countries: 🇺🇸 USA: 14 🇬🇧 UK: 4 🇲🇽 Mexico: 3 🇸🇪 Sweden: 3 🇩🇪 Germany: 1 ➡️ Top Active Groups: - Vice Society: 8 - Play: 6 - Lockbit: 6 - Royal: 4 - BlackByte: 4 Total Victims: 33 🧭 Hits Map:

1

13

40

DarkFeed

@ido_cohen2

2 years

🌐 CLOP #Ransomware team just added Seven new victims 🚨 One of the victims is a huge company with $72.1 billion in revenue from the United Kingdom 🇬🇧 None of the companies announced a #cyber attack👀 Top Targeted Countries: 🇺🇸 USA: 4 🇨🇦 Canada: 2 🇬🇧 UK: 1 #CLOPLEAKS

1

14

41

DarkFeed

@ido_cohen2

2 years

🌐 We have added a statistics page to present #Ransomware incidents calculated by time, countries and year 🧮 ➡️ Ransomware Incident by months ➡️ Top targeted countries by months ➡️ Top active groups over time ➡️ Top active groups in real-time * Registered users only ❕

2

11

41

DarkFeed

@ido_cohen2

7 months

🌐 Ransomware Team Status: ➡️ Online: -Handala (🇮🇷) -Denoex -Blackout -Trisec -Ransomhub -nSafe (🔄) -MyData -Slug ➡️ Offline: -BlackCat -Knight -Bloody -Insane Until now, In March 2024, #Ransomware attacks hit their lowest numbers compared to the same month in the last three

0

17

38