Ransomware Groups

Track active ransomware operations, dark web infrastructure, and associated threat actors

637
Ransomware Groups

Sicari

6 sites2026

Blackbit

1 site2025

Sparta

2 sites2022

Paradise2

Globe

Amnesia

Conti

Conti is an extremely damaging ransomware due to the speed with which it encrypts data and spreads to other systems. It was first observed in 2020 and it is thought to be led by a Russia-based cybercrime group that goes under the Wizard Spider pseudonym. In early May 2022, the US government announced a reward of up to $10 million for information on the Conti ransomware gang.

9 sites2 actors2022
Wizard Spider, Gold BlackburnWIZARD SPIDER

Kirov

Payloadbin

1 site1 actor2022
Indrik Spider

Antibrok3Rs

3 sites2025

Sundawn

Icefire

3 sites1 actor2022
Unknown

Nightsky

1 site1 actor2022
Bronze Starlight

Frag

2 sites2025

Sekhmet

2 sites2025

Belsen Group

1 site2025

Mbc

1 site2021

Justice Blade

1 site2026

Beast

Beast is a Ransomware-as-a-service (RaaS) product which provides functionality such as SMB scanning, file encryption, service and process starting and stopping, and geographic identification to avoid encryption in CIS countries.

10 sites2025

0Apt

The group appears unreliable. Most, if not all, of its alleged victims cannot be verified and appear to be randomly selected organizations. WE HAVE DECIDED TO REMOVE ENTRIES FOR THIS GROUP

1 site2026

Scattered Lapsus$ Hunters

2 sites2026

Vulcan

1 site2026

D4Rk4Rmy

1 site2025

Robinhood

1 site2026
Showing 337 - 360 of 637
PreviousNext
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001