Ongoing: New Ransomware Gangs in 2024

2023 was a year that saw ransomware continuously break records, and while the usual  suspects LockBit and BlackCat represented 38% of all reported attacks, we also saw around 29 new ransomware gangs begin operations last year.

Notable newcomers in 2023 included Akira, who were responsible for over 50 attacks and Rhysida who made headlines with attacks on organizations including the British Library and Prospect Medical.

We all know of the notorious groups that have been around for a number of years who, of course, are still making headlines with their notable attacks, but it is also important to watch those new groups who are emerging and starting to make waves in the ransomware landscape.

This year, we’ve decided to track new ransomware gangs and their victims and will keep you updated as and when we discover them.

Slug

Victims claimed: AerCap

Abyss

Victims claimed: Micrometals, Synergy Financial Group, Vida Diagnostics, Deltron, TransAxle, Posen Architects, MRA, Van Wingerden Family, Sunharbour Manor, NEI, The Yarco Companies, IAM Design, Lindquist Insurance, Ramey Wine Cellars, Rangam, Wold Architects and Engineers, Malca-Amit, Turning Point of Central California, Landmark Life Insurance, Conference USA, GreenLight BioSciences, R Zoppo Corp, QCells,  Roberts Environmental Control Corp, Scioto Paint Valley Mental Health Center, Idaho Pacific Holdings, Commercial Truck Equipment Co, PFSbrands, Emery Celli Brinckerhoff Abady Ward Maazel LLP, Fitzemeyer & Tocci Associates, Inc., TOLSA, Victron Energy Inc, PROMISE Technology Inc

Mydata

Linked to Alpha ransomware

Victims claimed: Integrity, CARRI Systems, Gadot Biochemical Industries, Levelwear, A24 Group, The Mike Ferry Organization, Eland Energy, BM Catalysts. Consorzio Innova, Geodis, First Texas Alliance Corp, Burger Industriewerk GmbH Co KG, Ark Workplace Risk

nSafe

Victims claimed: Hartl European Transport Company, American International College

Ransomhub

Victims claimed: YKP, Headwater Companies, Al Shefa Farm, Headwater Companies, Benthanh Group, Shooting House, SP Mundi, Merchant ID, Hozzify, SIEA, DVT Technology Ltd, Rekamy, Scadea Solutions, Computan, Kovra, SBM and Co, McKim & Creed, PGESCo, La Pashina, Woodsboro ISD, Avant IT, Agencia Host, Better Accounting Solutions, Carrozzeria Aretusa, UnitedHealth Group, Florio Pharmacy Napoli, Skyway Coach Lines, Baca County, Robeson County Sheriff’s Office, Grupo Cuevas, Empresa De Energia Del Bajo Putumayo, Mercatino, FabricaInfo, CYNC Solutions, Harman Realtors, Europeanprof, R H Bluestein, Design Intoto, Jute Trading, Precision Time Systems, Polaris, Extra, Universidad Nacional Autonoma de Mexico, Islamic Emirat of Afghanistan National Environmental Protection Agency, NRS Healthcare, Thaayakam, Kamo Jou Trading, Administacao do Porto de Sao Francisco do Sul, Eucatex USA, LPDB KUMKM Kementerian Koperasi, Confins Transportes, Neodesha Housing Authority, Rocky Mountain Sales, Chuoss, East Shore Sound, Okaunt, American Clinical Solutions, Matadero de Gijon, Peek Traffic, Houston Waste Solutions, Brittany Horne, ThrottleUp, ISETA ECA Group, Christies, SIAED SpA, PSG Banatski Dvor, Bjurholm, Frontier Communications, Crezit Group, U GRO Capital, Novabit Srl, Smic USA, Hospital Adventista de Manaus, Racal Acoustics Ltd, Parlorenzo, Domain at Cleveland, LIDER IT Consulting, GB RICAMBI SPA, Invisio Communications, Bitz Softwares, Multi-Wing International, Sicoob, Harris Ranch Beef Company, Cloud Europe, Danielle Group, Fusco, TV Equinocio Comunicaes Ltd, Midamea, Florida Health, NTT Data Romania SA, SF Medical, Hauptmann, Fine CO SRL, Daesang America Inc, SWCS Inc, aedifica, Baim Institute of Clinical Research, BFC Solutions, Erlebnisland Eurostrand GmbH, Lynch Aluminium, Netavent, Rite Aid, Zepter, Mellitah Oil & Gas/Enigas, Cameron Hodges, Bench International, Ceopag, HLB Puerto Rico LLC, Grupa PGD, The City of Newcastle, Metalfrio Solutions, Erma Group, Glow FM, Garudafood Putra Putri Jaya, Kumagai Gumi Co Ltd, Byzan Systems Pvt Ltd, SigmaControl, Premium Food Company Ltd, CMI Inc, Panitch Schwarze Bellsario Nadel LLP, Millinocket Regional Hospital, Oficina das Finanas Ltd, AutoCorp Holding, BP Jaguar, Castelli Group, Whittaker Co, Neurosurgical Spine Institute of Savannah, MVZ for Laboratory Medicine and Microbiology Koblenz-Mittelrhein, UDCH, We Level Up, Heyndrickx Service uit Zwijndrecht, Pii Pharmaceutics International Inc, NYDJ Apparel LLC, Big Green Egg, WGMA, McDowell Affleck, Bahia Principe Hotels Resorts, Normandy Diesel, RetailData LLC, HLB Puerto Rico LLC, Sobha Ltd, Kempe Engineering Australia, Amplicon Liveline Ltd, Infotexim, JG Summit Holdings Inc, Hudson Civil Engineering, Modern Ceramics Mfg, Rational Enterprise, The Investment Dar, Golfoycom, Pierre Diamonds, Dynasty Healthcare Group LLC, LoweMartin, Allium Interiors, Jefferson County Clerks Office Election Center, Natural Curiosities, Bedford High School, District Labor Office in Police, Atwood Cherny PC, ISNART, A&A Consultants Inc, Goldman Peterson PLC, Vinakom, Patelco Credit Union, William W Meyer & Sons Inc, NRcollecties, Manotherm Ltd, NETCONFIG, Regent Caravans, Greater Mount Calvary Holy Church, Martins Wood Primary School, Allan McNeill Chartered Accountants, Lennartsfors AB, Albyn Housing Society Ltd, Charleston County School District, Hospital IMO, Blower-Dempsay Corporation, inLighten, Banham Poultry Limited, Capital Fund 1, Ministry of Defense Kingdom of Saudi Arabia, Charleston County School District, Prasarana Malaysia Bhd, Alabama Plate Cutting Co, Smart ERP Solutions, TEC GmbH, HARRIS TECHNOLOGY SERVICES INC, Chuan Hwa Publishing Company, Polyco Healthline, Djibouti Ports & Free Zones Authority (DPFZA), Rainier Arms LLC, Oceanside Glasstile, LFE Wines, Gruyeria, The Fence Authority, John Kellys London, IPH Ingenierie, Primaria Municipiului Timisoara, Indraprastha Institute of Information Technology Delhi, la Cite internationale de la bande dessinee et de l’image, MINEDUC Ministerio de Educacion Guatemala, Swinburne University of Technology, Ramon Corripio, Grant Associates, Arabian Automobiles Co LLC, Ciot Stone Tile, Suva City Council, Electriforce Inc, Sanyo, Schneider Software, Removal.ai, Poker SpA, Sanyo Bussan Co, Amber Beverage Group, Garden Homes Management Corporation, Planned Parenthood Federation of America, Wilmington Community Clinic, Bennett Currie Limited, Performance Controls Inc, Galgorm Resort & Spa, Park N Fly, Towell Engineering Group, Tri-Tech Engineering Inc, CBT GmbH, Cincinnati Public Schools, Inglenorth Contracting Ltd, PHD Services LLC, Kawasaki Motors Europe NV, Inorde, Briedis, K. Mickeviciaus leidykla, Cardiology Of Virginia Inc, AVF Biomedical, University of Genoa, Department of Physical Education, BSG Australia, Vinati Organics Limited, All American Poly, Mechdyne Corporation, Thornton Construction Company Inc, Southeastern Retina Associates, Advantage CDC, Accurate Railroad Construction, Atlantic Coast Consulting Inc, Ferramenta La Futura, Krypton International Resources Inc, Okregowa Izba Pielegniarek, TTA, Tape Ruvicha SAECA, Top Doctors, Adantia SL, Faith Family Church, Cape Cod Academy, Nikpol, PlumbersStock, The Law Office of Omar O. Vargas, P.C., Ring Power Cat, Galloway & MacLeod Ltd, Liberty First Credit Union, abe advanced business events, AVL Systems Design, RAR Holding, Aroma Bursa Meyve Suları ve Gıda San. A.Ş., VIRA Insight, Acho, Savannahs Candy Kitchen, Bakpilic Entegre Tavukculuk A.S., Tellurian Inc, Germantown School District, Delaware Division of Libraries, Naniwa Pump Mfg, VBR Logistica Ltda, Careco Interiors, Law-taxes.pl, Tokiwa Sangyo, PipelBiz, Contegrity Group, Rocky Mountain Gastroenterology, Usina Coruripe, Markdom Plastic Products Ltd, Rollx Vans, Iron and Metals Inc, Peter and Pauls Hospitality Group, McCarty Architects, Domain Industries Inc, Enterprise Outsourcing, Kleber Associates, Releese, WinWin International, Omniboxx, Raven Capital Management, Canstar Restorations, TrulySmall Invoices, AUTODOC PRO, National Steak Processors LLC, Charles Blalock & Sons Inc, Oklahoma City Abstract Title Co, Medex, Johnson, Bunce & Noble, P.C., PracticeSuite, Inc, NextStage, Confidence Group, Saizeriya, Medicato, Basarsoft Information Technologies, Rahnuma FPAP (Family Planning Association of Pakistan), G Plans, Jędrzejów County, ASTO LABS, Transport System, LLC, Doctors To You, Horse Sport Ireland, Big Pharmacy, Aristoi Classical Academy, Camelot Facility & Property Management, Chilton Independent School District, Kersey Mill, HiCare, PROflex, Instituto de Cultura Puertorriquena, Sizelove Construction, Carey’s Mechanical LLC, QS Group, Sempre Medico, Clinicia, Star Health and Allied Insurance, Quality Assured Label (QAL), Al Qaryah Auctions, Yorozu Corporation, STIVO, Don Bosco Landser, Mauguio Carnon

Trisec

Victims claimed: Cogans Carrigaline, The Center for Molecular Medicine, AIVI Italian Association of Veterinary Hygienists

Mogilevich

Victims claimed: Infiniti USA, Bazaarvoice, Department of Foreign Affairs Trade Ireland, Epic Games, DJI China, Kick, Shein

Blackout

Victims claimed: Centre Hospitaliter , Metal 7, Hospitaltechnik Planungsgesellschaft, MCM Telecom, Badel, Luzan Health Consulting, Antaeus Travel Group, CDC Biodiversité

Donex

Victims claimed: Van der Helm, P Fleet, Elsap, Chocotopia

Handala

Victims claimed: ROTEC Reverse Osmosis Technologies, Aleph Farms, Kogol Unitrade, ArrowNet, Arad Textile, Massad College, Israel Study Center, Smart College, 99Digital, Kashin Distillery, HIGH Group, Amigour, Harmony Pharm, Ramat Gan Academic College, My City, Elfi Tech, SolidCAM, Ma’agan Michael Kibbutz, Zerto, Independent Education System, Sonol, Innovalve, BL Energy, EPS Tech, Israeli Industrial Batteries, Vidisco Ltd, Soreq NRC, MaxShop, Doscast

Kill

Victims claimed: Politia Romana, Paschim Banga Gvamiri Bank, Kerala Police, Rabitbd, Delhi Police Headquarters, Agrani Bank, Maxcess Logistics, STB SA, The Civil Notary Office Mariusz Bakowski, Bonatra, iCar Asia Powered by CARSOME, Star Taxi, JPoint by JITO, Instadriver, School Rush, Level SuperMind, TerraLogs, Autonomous, OneDayOnly, Kukun, Medisetter Doctor Network, Agra services, TJS, DVV Verzekeringen, Belfius Bank, CDA Assurances, P&V, Schyns Assurances, Rupicard, SuperCommerce, Infina YC S, Procuradoria Geral da Fazenda Nacional, Porter, Poorvika Mobiles Private Limited, Credihealth, Telehealth Center, Better Half.ai, Seoul Property Insight, Yassir, Healthy U Turn, Ping An Group, Avans, PT Trans F&B, ARGOFINANCE, Extramarks Education, Rudraksha Multispeciality Hospitals, Nur Ramadhan Wisata, Ministry of Internal Affairs of Libya, Volo Health, tripXOXO, AskVet, Star Health, Apollo Hospitals, Clinicia, One Day Event Insurance, BoloSign, AutoDukan

Red

Victims claimed: Aluminium Trailer, Southco Industries, Bay State College, Kogok Corporation, Tecnolight, Soluciones Logisticas Sauceda, SAG Global, Thor Data, Como Hotels, Bendall & Mednick, K2 Systems, Targus, AirCod, Kutes, Southco Industries Inc

Dark Vault

Reports and speculation are beginning to suggest that Dark Vault may be an rebranding attempt by LockBit.

Victims claimed: Hawk SCADA, HireBus, EZ Truck Solutions, Zane Benefits, Baheya Beauty, Tommy Club, THSP Risk Management, Qint, Bigtoe Pose, AtriLine, Sandip University, IKF Home Finance, Eskarabajo, Ale Educacao e Tecnologia, Nord Space, ZeepLive, Journo Travel Co, Oexpress, Decreditos, BuyEazzy, Panda Care, LifeVet Nova Friburgo, Sequel Logistics, Eurovilla Real Estate Agency, Blankstyle, Warrendale Wagyu, ComOferta, Mercado Mineiro de Internet SA, Glazkov CPA, Gauteng Partnership Fund, Lenmed Private Hospitals, Mega Travel Touroperador, PeopleWell Solutions, Ingot Brokers, Pocket Risk, Fresh Aire of South Florida

Embargo

Victims claimed: NorthBay HealthCare, Mulford Construction, Firstmac, ORGA Soft, Shamrock Trading Corporation, DME Delivers, JLA Group, Grand Perrier Industrie, Diligent Delivery Systems, Summerville Police Dept, Pioneer Balloon Company, Weiser Memorial Hospital

Qiulong

Victims claimed: Lincoln Graca Neto, Rosalvo, Willian Segallin, Andrea Rechia, Hominem Clinic, Escultural, Indigo ENT Group, Concisa Pavimentcao Terraplanagem

APT73 (Aka Erleig)

Victims claimed: Trifecta Technologies, Melting Mind, Credio, ServicePower, Brightway Consultants, AMI Global, AlphaNova, Apex Engineering Services, Borrer Executive Search, Gannon Solicitors, Brightway Consultants Ltd Chartered Surveyors, Globacap, Pindrop Hearing Limited, Ryland Peters and Small

dAn0n

Victims claimed: O’Connell Mahon Architects, RSH Legal, Semilab, Information Integration Experts, Glenwood Management, Northeast Orthopaedics and Sports Medicine, College Park Industries, Allen Blasting and Coating, Erler & Kalinowski, S&F Concrete Contractors, The Blake Law Firm, United Equitable Group, Hospitals & Physicians Clinics, Promark Brands, The Sourcing Group, Dunn Solutions, MM Transport Services, Stahly Engineering Associates

Space Bears

Victims claimed: Fire Fighting Systems, Filesenstudio, Thinkadam, CORTEX Chiropractic & Clinical Neuroscience, Surewerx USA, SM EMBALLAGE, Mr Bean, Mesopolys, Hytera America, InVogue Total Women’s Healthcare, Lee Trevino Dental, Seoyon Automotive do Brasil Ltd, Cuccuini, Sawa International UAE, BLADE, Heli Securite, ROTOR TEAM Helicopter Services, Un Museau Vaut Mille Mots, Haylem, Lexibar, Volker Stienemann, Law Offices of Boris E Efron PC, EBL PARTNERS LLC, Kemlon Products, Keystone Engineering, Codival CI, CNPS Cameroun

Zero Tolerance

Victims claimed: Banco de la Nacion Argentina

Arcus Media

Victims claimed: Prefeitura Municipal de Santo Antônio da Patrulha, Cusat Custodia Satelital, Braz Assessoria Contábil, Thibabem Atacadista, Filipino Society of Composers, Authors and Publishers (FILSCAP), Grupo SASMET, Gold RH S.A.S, Frigrífico Boa Carne, Immediate Transportation, Botselo Mills, BHMAC, Duque Saldarriaga, Franja IT Integradores de Tecnologia, Transporte Langescheid, WinFashion, Ged Lawyers, Exhaust Pro, Bank Self Storage, Total Revisjon DA, DatAnalitica, Clima Lodi, Freightliner of Grand Rapids & Kalamazoo, Doodle Tech, Rextech, Gino Giglio Generation Spa, Uni-PA, Like Family’s, Emtel, Nova Sinseg, Solutii Sistemas, Frigocenter, Partners Air, Interbel, Country Club El Bosque, Vasesa, Superior Quality Insurance Agency, Petropolis Pet Resort

SenSayQ

Victims claimed: Premier Broking House, Vimer Industrie Grafiche Italiane

El Dorado (Rebranded as BlackLock in October)

Victims claimed: UCC Retrievals, TBM Consulting Group, K-State College of Veterinary Medicine, Tankerska Plovidba dd, City of Pensacola, Thunderbird Country Club, Baker Triangle, Gough Homes, HTE Technologies, LindoStar, Panzer Solutions LLC, Istituto di Istruzione Superiore, CellPlan Technologies, Adams Homes, CURVC Corp, Eagle Safety Eyewear, New River Electrical Corporation, The Recycler Core Company, Mullen Wylie LLC, City of Aberdeen, BSH, CMC Construction Material Company, GC Custom Metal Fabrication, Cucina Tagliani, Data Campos Sistemas, Kennedy Funding, Palm Facility Services, Think Simple, Pacific Educational Services, A Mobile Lock Key, Total Electronics Contracting Inc, ATD-American, A&L Auto Recyclers, BUROTEC S.A., Fleet Equipment Center Inc, Alliance Industries LLC, Avio e Sforza Amministrazioni Immobiliari, Premier Packaging, Gough Construction

Trinity

Victims claimed: Filmetrics, Canadian Business College, Shell Glen Fire Rescue, Banner and Associates, Welland, Rocky Mountain Gastroenterology, Fabrica Industrial Machinery & Equipment

Cicada3301

Victims claimed: The Access Group, ASST Rhodense, Maintel, Basement Systems, Groupe Pro-B, Leech Lake Gaming, NARSTCO, Tristar Design and Build, D&K Group Inc, VOSS Belting and Specialty, Valley Bulk, Square One Coating Systems, SILIPOS, VVS-Eksperten, Riley, Pope & Laney, Findel, EBA Ernest Bland Associates, UFCW Local 135, Chama Gaucha, P. + S. Christen AG, Bayou Desiard Country Club, Khoo and Company Inc, John W Brooker & Co, BLVD Residential Inc, Bogdan & Frasco LLP, MIYAKI, Capital Printing, Model Engineering, Crown Mortgage Company, Hughes Gill Cochrane Tinetti, Conductive Containers Inc, Luxwood Software Tools, Racing Forensics, RDC Control, Dubin Group, T-Space Architects, INDIBA

Brain Cipher

Victims claimed: Ministry of Communication and Information Technology, APEX Global, Sherbrooke Metals, Family Wealth Advisors Ltd, Cole Technologies Group, MARS 2, Fabamaq, Cyceron, Tiendas Macuto, Prof. Bein & Co, photo RMN, Hanwa Thailand

Pyrx

Victims claimed: Rowan College at Burlington, United Arab Emirates Government

Vanir

Victims claimed: Athlon, Qinao, Beowulf Blockchain

Ransomcortex

Victims claimed: Perfeita Plastica, Dona Anita

NullBulge

Victims claimed: The Walt Disney Co

Fog

Victims claimed: Geelong Lutheran College, Asbury Theological Seminary, DJG Projects, Verweij Elektrotechniek, Alvin Independent School, West Allis – West Milwaukee School District, German University of Technology in Oman, WSU Tech, Architecture00, Odessa College, City of Cold Lake, BASF | Nunhems, Unknown Worlds, Central Pennsylvania Food Bank, Welker, Cordogan Clark, Fromm International, Ultra Tune, Trimarc Financial Inc, Schweiger Group, Philadelphia Macaroni Company

Mad Liberator

Victims claimed: ZB Financial Holdings, South African Cities Network, Crosswear Trading, Montero & Segura Procuradores Asociados, Ministero della cultura, Vitaldent, VRD Logistics, ORBINOX Group, Continuity Innovation, Suandco – Abogados y Economistas, AWS Automatische Wickelsysteme AG, YCH Group, CTE SpA

Lynx

Victims claimed: True Blue Environmental, The Greenhouse People, Pyle Group, Reef-PCG, Cambria Automobiles, Johnson Laschober & Associates, Miller Boskus Lack Architects, DDM CONCUT, Alvan Blanch Development, Warwick Hotels and Resorts, Innoquest, Rushlift, KidKraft, PBS group, Bay Sales, Wallace Construction Specialties, Myelec Electrical, MacEwen Petroleum, Tranter, Gortemoller Engineering, Riverside Resort Hotel and Casino, IDOM, Arbitech, Ascend Analytics, Cruz Construction, Triverus, English Construction Company, Sit ‘n Sleep, Blain Supply, Tankstar USA, Funlab Pty Ltd

Helldown

Victims claimed: Albatross, Vindix, Briju, Azienda Transporti Pubblici, Chesapeake Bay Maritime Museum, My Freightworld Technologies, XPert Business Solutions, Deganis, Schlattner, Hug Witschi AG, KBO Fire & Security, Zyxel Networks, Khonaysser Group, KBO Fire Security, Greater Cincinnati Pain Management, Barry Avenue Plating, RSK Immobilien, Jewish Federation of Greater Harrisburg 

Valencia

Victims claimed: Globe Pharmaceutical Group of Companies, Satia Industries, CCM Duopharma Biotech Berhad, Tendam, City Of Pleasanton

Orca

Victims claimed: ExcelPlast Tunisie, Chernan Technology

Nitrogen

Victims claimed: Brechbuhler Scales Inc, Magenta Photo, MDSi, Idealease, Control Panels USA Inc, Spectrum Industries Inc

Sarcoma

Victims claimed: ICS Nett, Ferrer & Ojeda, AHI Supply, Importadora Monterrey SRL, National Edging, Nexus-Shinozaki, Structure-flex, Ciclo Cairu, Nora-Lindefrakt, Rio Marine, InCare Technologies, Antenne Reunion Radio, GMG Mining Supplies, Smart Media Group Bulgaria, The Roberts Family Law Firm, Gedco, EARTHWORKS Group, Perfection Fresh, Advanced Accounting & Business Advisory, Road Distribution Services, Lácteos Lorán, Curtidos Barbero, EasyPay, Jumbo Electronics Qatar, Navarra & Marzano, Costa Del Sol Hotels, The Plastic Bag Company, Elevator One, March Elevator, Suntrust Properties, Timber, McMunn & Yates Building Supplies, AUXIT S.R.L, Open Range Field Services, LLC, Zierick Manufacturing Corporation, Pheim Unit Trusts Berhad

INTERLOCK

Victims claimed: Cathexis Holdings LP

This information has been collated from various online sources.

Last updated 10/22/2024 at 09:35 GMT