Ongoing: New Ransomware Gangs in 2024

2023 was a year that saw ransomware continuously break records, and while the usual  suspects LockBit and BlackCat represented 38% of all reported attacks, we also saw around 29 new ransomware gangs begin operations last year.

Notable newcomers in 2023 included Akira, who were responsible for over 50 attacks and Rhysida who made headlines with attacks on organizations including the British Library and Prospect Medical.

We all know of the notorious groups that have been around for a number of years who, of course, are still making headlines with their notable attacks, but it is also important to watch those new groups who are emerging and starting to make waves in the ransomware landscape.

This year, we’ve decided to track new ransomware gangs and their victims and will keep you updated as and when we discover them.

Slug

Victims claimed: AerCap

Abyss

Victims claimed: Micrometals, Synergy Financial Group, Vida Diagnostics, Deltron, TransAxle, Posen Architects, MRA, Van Wingerden Family, Sunharbour Manor, NEI, The Yarco Companies, IAM Design, Lindquist Insurance, Ramey Wine Cellars, Rangam, Wold Architects and Engineers, Malca-Amit, Turning Point of Central California, Landmark Life Insurance, Conference USA, GreenLight BioSciences

Mydata

Linked to Alpha ransomware

Victims claimed: Integrity, CARRI Systems, Gadot Biochemical Industries, Levelwear, A24 Group, The Mike Ferry Organization, Eland Energy, BM Catalysts. Consorzio Innova, Geodis, First Texas Alliance Corp

nSafe

Victims claimed: Hartl European Transport Company, American International College

Ransomhub

Victims claimed: YKP, Headwater Companies, Al Shefa Farm, Headwater Companies, Benthanh Group, Shooting House, SP Mundi, Merchant ID, Hozzify, SIEA, DVT Technology Ltd, Rekamy, Scadea Solutions, Computan, Kovra, SBM and Co, McKim & Creed, PGESCo, La Pashina, Woodsboro ISD, Avant IT, Agencia Host, Better Accounting Solutions, Carrozzeria Aretusa, UnitedHealth Group, Florio Pharmacy Napoli, Skyway Coach Lines, Baca County, Robeson County Sheriff’s Office, Grupo Cuevas, Empresa De Energia Del Bajo Putumayo, Mercatino, FabricaInfo, CYNC Solutions, Harman Realtors, Europeanprof, R H Bluestein, Design Intoto, Jute Trading, Precision Time Systems, Polaris, Extra, Universidad Nacional Autonoma de Mexico, Islamic Emirat of Afghanistan National Environmental Protection Agency, NRS Healthcare, Thaayakam, Kamo Jou Trading, Administacao do Porto de Sao Francisco do Sul, Eucatex USA, LPDB KUMKM Kementerian Koperasi, Confins Transportes, Neodesha Housing Authority, Rocky Mountain Sales, Chuoss, East Shore Sound, Okaunt, American Clinical Solutions, Matadero de Gijon, Peek Traffic, Houston Waste Solutions, Brittany Horne, ThrottleUp, ISETA ECA Group, Christies, SIAED SpA, PSG Banatski Dvor, Bjurholm, Frontier Communications, Crezit Group, U GRO Capital, Novabit Srl, Smic USA, Hospital Adventista de Manaus, Racal Acoustics Ltd, Parlorenzo, Domain at Cleveland, LIDER IT Consulting, GB RICAMBI SPA, Invisio Communications, Bitz Softwares, Multi-Wing International, Sicoob, Harris Ranch Beef Company, Cloud Europe, Danielle Group, Fusco, TV Equinocio Comunicaes Ltd, Midamea, Florida Health, NTT Data Romania SA, SF Medical, Hauptmann, Fine CO SRL, Daesang America Inc, SWCS Inc, aedifica, Baim Institute of Clinical Research, BFC Solutions, Erlebnisland Eurostrand GmbH, Lynch Aluminium, Netavent, Rite Aid, Zepter, Mellitah Oil & Gas/Enigas, Cameron Hodges, Bench International, Ceopag, HLB Puerto Rico LLC, Grupa PGD, The City of Newcastle, Metalfrio Solutions, Erma Group, Glow FM, Garudafood Putra Putri Jaya, Kumagai Gumi Co Ltd, Byzan Systems Pvt Ltd, SigmaControl, Premium Food Company Ltd, CMI Inc, Panitch Schwarze Bellsario Nadel LLP, Millinocket Regional Hospital

Trisec

Victims claimed: Cogans Carrigaline, The Center for Molecular Medicine, AIVI Italian Association of Veterinary Hygienists

Mogilevich

Victims claimed: Infiniti USA, Bazaarvoice, Department of Foreign Affairs Trade Ireland, Epic Games, DJI China, Kick, Shein

Blackout

Victims claimed: Centre Hospitaliter , Metal 7, Hospitaltechnik Planungsgesellschaft, MCM Telecom, Badel, Luzan Health Consulting

Donex

Victims claimed: Van der Helm, P Fleet, Elsap, Chocotopia

Handala

Victims claimed: ROTEC Reverse Osmosis Technologies, Aleph Farms, Kogol Unitrade, ArrowNet, Arad Textile, Massad College, Israel Study Center, Smart College, 99Digital, Kashin Distillery, HIGH Group, Amigour, Harmony Pharm, Ramat Gan Academic College, My City, Elfi Tech, SolidCAM, Ma’agan Michael Kibbutz, Zerto, Independent Education System, Sonol, Innovalve, BL Energy

Kill

Victims claimed: Politia Romana, Paschim Banga Gvamiri Bank, Kerala Police, Rabitbd, Delhi Police Headquarters, Agrani Bank, Maxcess Logistics

Red

Victims claimed: Aluminium Trailer, Southco Industries, Bay State College, Kogok Corporation, Tecnolight, Soluciones Logisticas Sauceda, SAG Global, Thor Data, Como Hotels, Bendall & Mednick, K2 Systems, Targus, AirCod, Kutes, Southco Industries Inc

Dark Vault

Reports and speculation are beginning to suggest that Dark Vault may be an rebranding attempt by LockBit.

Victims claimed: Hawk SCADA, HireBus, EZ Truck Solutions, Zane Benefits, Baheya Beauty, Tommy Club, THSP Risk Management, Qint, Bigtoe Pose, AtriLine, Sandip University, IKF Home Finance, Eskarabajo, Ale Educacao e Tecnologia, Nord Space, ZeepLive, Journo Travel Co, Oexpress, Decreditos, BuyEazzy, Panda Care, LifeVet Nova Friburgo, Sequel Logistics, Eurovilla Real Estate Agency

Embargo

Victims claimed: NorthBay HealthCare, Mulford Construction, Firstmac, ORGA Soft, Shamrock Trading Corporation, DME Delivers, JLA Group, Grand Perrier Industrie, Diligent Delivery Systems

Qiulong

Victims claimed: Lincoln Graca Neto, Rosalvo, Willian Segallin, Andrea Rechia, Hominem Clinic, Escultural, Indigo ENT Group, Concisa Pavimentcao Terraplanagem

APT73 (Aka Erleig)

Victims claimed: Trifecta Technologies, Melting Mind, Credio, ServicePower, Brightway Consultants, AMI Global, AlphaNova, Apex Engineering Services, Borrer Executive Search, Gannon Solicitors, Brightway Consultants Ltd Chartered Surveyors

dAn0n

Victims claimed: O’Connell Mahon Architects, RSH Legal, Semilab, Information Integration Experts, Glenwood Management, Northeast Orthopaedics and Sports Medicine, College Park Industries, Allen Blasting and Coating, Erler & Kalinowski, S&F Concrete Contractors, The Blake Law Firm, United Equitable Group, Hospitals & Physicians Clinics, Promark Brands, The Sourcing Group

Space Bears

Victims claimed: Fire Fighting Systems, Filesenstudio, Thinkadam, CORTEX Chiropractic & Clinical Neuroscience, Surewerx USA, SM EMBALLAGE, Mr Bean, Mesopolys, Hytera America, InVogue Total Women’s Healthcare, Lee Trevino Dental, Seoyon Automotive do Brasil Ltd, Cuccuini, Sawa International UAE, BLADE, Heli Securite, ROTOR TEAM Helicopter Services, Un Museau Vaut Mille Mots, Haylem, Lexibar, Volker Stienemann

Zero Tolerance

Victims claimed: Banco de la Nacion Argentina

Arcus Media

Victims claimed: Prefeitura Municipal de Santo Antônio da Patrulha, Cusat Custodia Satelital, Braz Assessoria Contábil, Thibabem Atacadista, Filipino Society of Composers, Authors and Publishers (FILSCAP), Grupo SASMET, Gold RH S.A.S, Frigrífico Boa Carne, Immediate Transportation, Botselo Mills, BHMAC, Duque Saldarriaga, Franja IT Integradores de Tecnologia, Transporte Langescheid, WinFashion, Ged Lawyers, Exhaust Pro, Bank Self Storage, Total Revisjon DA, DatAnalitica, Clima Lodi, Freightliner of Grand Rapids & Kalamazoo, Doodle Tech

SenSayQ

Victims claimed: Premier Broking House, Vimer Industrie Grafiche Italiane

El Dorado

Victims claimed: UCC Retrievals, TBM Consulting Group, K-State College of Veterinary Medicine, Tankerska Plovidba dd, City of Pensacola, Thunderbird Country Club, Baker Triangle, Gough Homes, HTE Technologies, LindoStar, Panzer Solutions LLC, Istituto di Istruzione Superiore, CellPlan Technologies, Adams Homes

Trinity

Victims claimed: Filmetrics, Canadian Business College, Shell Glen Fire Rescue

Cicada3301

Victims claimed: The Access Group, ASST Rhodense, Maintel, Basement Systems, Groupe Pro-B, Leech Lake Gaming, NARSTCO, Tristar Design and Build, D&K Group Inc, VOSS Belting and Specialty

Brain Cipher

Victims claimed: Ministry of Communication and Information Technology, APEX Global, Sherbrooke Metals, Family Wealth Advisors Ltd, Cole Technologies Group, MARS 2

Pyrx

Victims claimed: Rowan College at Burlington, United Arab Emirates Government

Vanir

Victims claimed: Athlon, Qinao, Beowulf Blockchain

Ransomcortex

Victims claimed: Perfeita Plastica, Dona Anita

NullBulge

Victims claimed: The Walt Disney Co

Fog

Victims claimed: Geelong Lutheran College, Asbury Theological Seminary, DJG Projects, Verweij Elektrotechniek, Alvin Independent School, West Allis – West Milwaukee School District, German University of Technology in Oman, WSU Tech, Architecture00, Odessa College

Mad Liberator

Victims claimed: ZB Financial Holdings, South African Cities Network, Crosswear Trading, Montero & Segura Procuradores Asociados, Ministero della cultura, Vitaldent, VRD Logistics, ORBINOX Group

This information has been collated from various online sources.

Last updated 07/26/2024 at 09:11 GMT