Ransomware Intelligence

Weekly ransomware threat intelligence covering recent attacks, threat actor analysis, and incident tracking.

 

Ransomware summary week 05, 2026

Week 5 saw the FBI seize the RAMP cybercrime forum in a landmark takedown, while Qilin ransomware claimed Tulsa International Airport and Philippine Savings Bank among 34 daily victims. Two former US cybersecurity professionals pleaded guilty to ALPHV/BlackCat attacks, and TA584 expanded initial access operations with new Tsundere Bot malware.
Jan 31, 2026

 

Ransomware summary week 04, 2026

Week 4 saw the Belgian hospital AZ Monica ransomware attack disrupting patient care across Antwerp, while Qilin continued targeting Asian manufacturing with attacks on Singapore’s Neo Group and Thailand’s Charoenchai Transformer. WorldLeaks claimed 1.4TB from Nike, and two US cybersecurity professionals pleaded guilty to ALPHV ransomware attacks.
Jan 27, 2026

 

Ransomware summary week 03, 2026

Week 3 saw Qilin targeting Vietnam Airlines and Japanese manufacturers while Akira launched aggressive campaigns against US businesses. TridentLocker’s attack on Sedgwick Government Solutions exposed federal contractor vulnerabilities, and Ingram Micro disclosed a July 2025 breach affecting 42,000 employees.
Jan 20, 2026

 

Ransomware summary week 02, 2026

Week 02 of 2026 saw continued high-volume ransomware activity with Qilin emerging as the dominant threat group. Notable incidents include attacks on Romania’s critical…
Jan 13, 2026

 

Ransomware summary week 51, 2025

Week 51 of 2025 saw continued escalation in ransomware attacks globally, with Clop ransomware dominating headlines through its exploitation of Oracle E-Business Suite and…
Dec 20, 2025

 

Ransomware summary week 49, 2025

Week 49 of 2025 continued the alarming trend of escalating ransomware attacks globally, with significant incidents reported across all major regions. The United States…
Dec 8, 2025
No matching items