Ransomware Groups

Track active ransomware operations, dark web infrastructure, and associated threat actors

637
Ransomware Groups

Hive

Hive is a strain of ransomware that was first discovered in June 2021. Hive was designed to be used by Ransomware-as-a-service providers, to enable novice cyber-criminals to launch ransomware attacks on healthcare providers, energy providers, charities, and retailers across the globe. In 2022 there was a switch from GoLang to Rust.

3 sites2023

Cryakl

Fargo

Fakersa

Noname

5 sites2024

Skira Team

1 site2025

Mydecryptor

1 site2021

Bidon

Xelera

Dataf Locker

1 site2024

Thundercrypt

Bitransomware

1 site2024

La Piovra

3 sites2024

Minteye

2 sites2025

Chort

1 site2024

Kuiper

Jaff

1 site1 actor2024
TA505, Graceful Spider, Gold Evergreen

Zero Tolerance Gang (Ztg)

1 site2024

Darkrace

1 site2023

Lockbit3

LockBit, also recognized as LockBit Black or Lockbit 3.0, is one of the largest Ransomware Groups in the world and has orchestrated extensive cyberattacks across various industries, impacting thousands of organizations globally with its relentless and adaptive strategies.

41 sites2022

Deathgrip

Direwolf

3 sites2026

Ymir

Payoutsking

3 sites2025
Showing 241 - 264 of 637
PreviousNext
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001