Ransomware Group:  
Darkvault



Sponsored by Hudson RockUse Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business


Sites | Activity | Worldmap | Victims (51)


Sites

Title Available Last Visit FQDN Screenshot
DarkVault 🟢 2024-11-21 05:48:20.863344 tx23pk4zw5qynq3tmfk2jz5zbel63p4nwvkheswze7r6gzxhzcbseyad.onion 📸
DarkVault BLOG 🟢 2024-11-21 05:48:38.411388 mdhby62yvvg6sd5jmx5gsyucs7ynb5j45lvvdh4dsymg43puitu7tfid.onion 📸

Activity over time

Worldmap

51 Victims

KR flag

inthinking.net 

Company logo
Ransomware Group:

Discovery Date: 2024-11-20 15:14

Sector: Education
InThinking is an innovative educational technology and training company which provides web-based resources and high quality training for IB World Schools. With more than 20 years experience, we are particularly committed to promoting critical thinking across the curriculum.

Victim:   |  Group: 
AE flag

arabot.io 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 18:05

Sector: Technology
Founded in 2016, arabot is a high-tech company which specialises in providing end-to-end solutions which focus on building an authentic conversational experience between bots and humans. Through its cutting-edge conversational AI chatbots and text understanding technologies, arabot helps businesses communicate and engage with customers in an efficient, effective and intelligent way across a wide range of different websites, applications and social media platforms.

Victim:   |  Group: 
IN flag

techguard.in 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 16:14

Sector: Technology
Techguard specializes in offering device protection products, warranty and repair services for tech gadgets and appliances.

Victim:   |  Group: 
AE flag

naj.ae 

Company logo
Ransomware Group:

Discovery Date: 2024-11-07 18:12

Sector: Technology
NEJOUM ALJAZEERA initiated its movement during the late last century, where its activities revolved around trading in and trading out vehicles, as well as logistics and meet the expectations of all customers present locally and in the gulf region, synchronizing along with the economic prosperity witnessed by United Arab Emirates which greets diverse nationalities that provides work, residency, and investments. One of our first branches was opened in Sharjah in the year of 2002 to officially start our journey in servicing -American exported- used cars.

Victim:   |  Group: 
US flag

freshairefranchise.com 

Company logo
Ransomware Group:

Discovery Date: 2024-08-28 14:45

Fresh Aire has been fragrancing and deodorizing offices since 1995! Our deodorizers and fragrances are specially formulated to quietly and continuously evaporate into the air. These environmentally friendly fragrances contain odor neutralizers and odor counteractants. We have a variety of fragrances from strong to mild, and our owners and service technicians use both art and science to control the evaporation rate. This technique allows us to fragrance any area from the size of the typical office or lobby to a large or small restroom for about the cost of a lunch every four weeks!

Victim:   |  Group: 
GB flag

pocketrisk.com 

Company logo
Ransomware Group:

Discovery Date: 2024-08-26 14:40

Pocket Risk is a provider of risk tolerance assessment and portfolio analysis tools for financial advisors. Its focus on reliability and pioneering research allows advisors to make investment decisions that align with their clients' risk profiles. The innovative solutions provided by the company equip advisors with the latest insights and evidence-based strategies, helping them to deliver considerable value to their clients.

Victim:   |  Group: 
SC flag

ingotbrokers.com 

Company logo
Ransomware Group:

Discovery Date: 2024-08-24 15:08

INGOT Brokers is a premium multi-asset brokerage firm aimed at making financial markets easily available and accessible to traders of all kinds and experience levels. The company is regulated by the Financial Services Authority Mahe, Seychelles., providing a trustworthy and outstanding trading experience. Our company was founded in 2006 with the vision to become a leader in our industry by delivering premium service, competitive prices, award-winning trading platforms and empower traders to unlock their financial freedom. INGOT Brokers offers clients top-notch trading conditions, great liquidity, and ultra-tight spreads, delivering an optimal trading experience. With 1000+ financial instruments available to trade across Forex, Commodities, Global Indices, Stocks, ETFs, and Cryptocurrencies, you’re able to build a diverse, well-balanced investment portfolio. At INGOT Brokers, you are assured of quality services that are provided with the highest standards of technical support.

Victim:   |  Group: 
KR flag

peoplewell.com 

Company logo
Ransomware Group:

Discovery Date: 2024-08-17 22:21

Sector: Healthcare
PeopleWell Solutions is a single platform HR system built to reduce the time and effort it takes for your HR team to administer HR tasks, payroll, benefits, reports and reconciliation.

Victim:   |  Group: 
MX flag

megatravel.com.mx 

Company logo
Ransomware Group:

Discovery Date: 2024-08-15 10:00

Compañía especializada en organizar y programar viajes internacionales para turismo cultural, receptivo y emisivo. Fundada en México en el año 1999; nos hemos destacado como la mejor Operadora Turística en México, Argentina, Colombia y Panamá.

Victim:   |  Group: 
ZA flag

lenmed.co.za 

Company logo
Ransomware Group:

Discovery Date: 2024-08-13 13:06

Sector: Healthcare
Lenmed Hospitals are deeply rooted in the historical landscape of Southern Africa. They have provided exceptional private care to the communities they serve for over three decades. The first Lenmed Clinic in Lenasia, which opened its doors in 1984, is now the Ahmed Kathrada Private Hospital. With state-of-the-art facilities and over 80 specialist medical practitioners, it stands proudly today as a testament to Lenmed’s excellence in clinical care.

Victim:   |  Group: 
ZA flag

gpf.org.za 

Company logo
Ransomware Group:

Discovery Date: 2024-08-13 13:05

The Gauteng Partnership Fund, an agency of the Gauteng Department of Human Settlements, combines resources from the private and public sectors to speed up the development of affordable rental housing near amenities and economic opportunities. Its aim is to enhance the socioeconomic state of Gauteng communities.

Victim:   |  Group: 
IL flag

glazkov.co.il 

Company logo
Ransomware Group:

Discovery Date: 2024-08-13 10:07

Sector: Construction
Since its establishment in 2012, our firm has been successfully providing accounting, payroll, and tax planning services to a loyal, regular clientele that grows consistently from year to year. Founder Irena Glazkov, CPA, and a team of top-tier professionals, serve diverse businesses and individuals with the highest level of professionalism.

Victim:   |  Group: 
BR flag

comoferta.com 

Company logo
Ransomware Group:

Discovery Date: 2024-08-08 07:07

Developer of a promotion-sharing application designed to offer an online channel for the dissemination of offers. The company's platform allows retailers to advertise their offers to consumers who can still share these offers on their social networks, with basic information about the product, price and establishment, enabling users to buy and share deals with their network.

Victim:   |  Group: 
BR flag

mercadomineiro.com.br 

Company logo
Ransomware Group:

Discovery Date: 2024-08-08 07:03

Mercado Mineiro is an online site that performs research, price comparison and offers virtual retail for consumers and the press.

Victim:   |  Group: 
GB flag

warrendale-wagyu.co.uk 

Company logo
Ransomware Group:

Discovery Date: 2024-08-01 22:44

Established in 2017, we are a Yorkshire based Wagyu Beef Business, currently working in partnership with over 800 farmer partners across the UK. We work with forward-thinking dairy farmers, to cross full blood Wagyu genetics to produce a Wagyu Cross, known as an F1 Wagyu.

Victim:   |  Group: 
US flag

blankstyle.com 

Company logo
Ransomware Group:

Discovery Date: 2024-07-26 14:40

Blankstyle and its founders have a collective history in the wholesale distribution and manufacturing world of thirty plus years. We are constantly evolving our offering and our service to meet the needs of our customers. Headquartered in Southern ca with roots in the local surf and skate industry we have expanded nationwide and now boast an expansive distribution network strategically located throughout the United States with the goal of providing fast easy access to an excessively large selection of blank t-shirts and other apparel.

Victim:   |  Group: 
HR flag

eurovilla.hr 

Company logo
Ransomware Group:

Discovery Date: 2024-07-23 15:07

Eurovilla real estate agency founded in 2002. has become one of the leading agencies in the Croatia, with an emphasis on exclusive properties in Zagreb and the coastal zone. It deals with the sale and rental of residential and business facilities.

Victim:   |  Group: 
IN flag

sequelglobal.com 

Company logo
Ransomware Group:

Discovery Date: 2024-07-03 22:38

Sector: Technology
Sequel Logistics is a supply chain management company, providing solutions specifically for critical logistics requirements, on a worldwide basis. The company was founded in 2004 in Bangalore, and over the years, have developed specialized capabilities and domain knowledge, to design, execute and manage supply chain and logistics of high value and critical products for B2B & B2C business in India, US and Europe.

Victim:   |  Group: 
 flag

foremedia.net 

Company logo
Ransomware Group:

Discovery Date: 2024-07-03 13:40

Sector: Technology
With years of experience in the digital ads industry, we, at ForeMedia, see ourselves as an innovative digital display advertising network that unites the advertisers and publishers through its self-serve platform. We strive to improve the conversion rate of our advertisers to maximize their ROI while working hard to make the most out of our publishers’ web traffic to increase their revenue. And we are able to do it because of our in-house team of expert and dedicated support who works hard and is never afraid to innovate. At ForeMedia, we treat our partnerships and relationships as our top priority which also serves as the foundation of our work.

Victim:   |  Group: 
BR flag

life.vet.br 

Company logo
Ransomware Group:

Discovery Date: 2024-06-30 01:12
Estimated Attack Date: 2024-06-29

Sector: Healthcare
Acting in the market since 2004 and with great experience of laboratories in the interior of the state of Rio de Janeiro. Now comes a new concept in veterinary diagnoses, Life.vet. We have as main objective the excellence in customer service, quality in transportation and sample processing, constant professional updating and new techniques in diagnostics. All this combined with cutting-edge technology in information management equipment and systems. Our new concept is based on a qualified team of veterinarians, biomedicals, production engineer and specialized technicians. All trained to provide all assistance and performing the most varied types of exams.

Victim:   |  Group: 
AE flag

pandacare.ae 

Company logo
Ransomware Group:

Discovery Date: 2024-06-29 23:18

Sector: Healthcare
Panda Care Car Wash and Pet grooming is your one-stop solution for all your Vehicle and Pet needs. With our state-of-the-art facilities and experienced staff, we provide top-quality car wash, tinting, and pet grooming services that will leave your vehicles looking like new & keep your furry friend looking sharp! Our services are fast, reliable, and affordable; Stop by today to experience Panda Care's service firsthand!

Victim:   |  Group: 
IN flag

buyeazzy.com 

Company logo
Ransomware Group:

Discovery Date: 2024-06-27 16:02

BuyEazzy is building online Beauty Destination for Bharat, through trusted neighborhood micro-preneurs. We are on a mission to onboard 300 Mn+ offline users from Tier2/+ cities and towns in India onto online shopping and enable them to experience the power of Digital Democratized commerce.

Victim:   |  Group: 
 flag

decreditos.com 

Company logo
Ransomware Group:

Discovery Date: 2024-06-25 15:55

Decreditos provides loans through a 100% online process. In constant search and development of new products that allow easy access for all people to the financial sector. The company has branches in more than 4,000 cities and has been in business for 20 years.

Victim:   |  Group: 
ID flag

oexpress.id 

Company logo
Ransomware Group:

Discovery Date: 2024-06-21 16:09

OExpress adalah platform logistik yang menawarkan berbagai layanan pengiriman ekspres, sebagai ekspedisi dengan sistem pintar yang membantu meningkatkan keberhasilan pengiriman.

Victim:   |  Group: 
 flag

cosimti.com 

Company logo
Ransomware Group:

Discovery Date: 2024-06-17 13:14

Sector: Technology
Empresa boliviana lider en servicios de Seguridad de la Informacion. Las organizaciones de casi todos los sectores confían en nuestros servicios de gestión de riesgos de seguridad para disminuir su superficie de amenaza, reducir los costos de TI, impulsar la eficiencia operativa y cumplir con el cumplimiento normativo continuo. Con la combinación correcta de soluciones de control de identidad y prevención de ciberamenazas, puede proteger datos, activos y aplicaciones valiosos, optimizar y automatizar procesos manuales que requieren mucho tiempo y cumplir con los requisitos de cumplimiento y los estándares de la industria.

Victim:   |  Group: 
 flag

journohq.com 

Company logo
Ransomware Group:

Discovery Date: 2024-06-17 11:19

Sector: Technology
Create your own story with Journo! From classic journal writing to travel maps and photo books, you'll be able to document your adventures, print your journals, publish your travels online and much more!

Victim:   |  Group: 
 flag

ZeepLive 

Company logo
Ransomware Group:

Discovery Date: 2024-06-12 18:17

Sector: Not Found
Zeeplive offers you a stage for video chat and video calls with new friends, it gets simpler to make friends and talk with new people. Chat with your new friends face-to-face in a live video call or have a chat through text messages anytime, anywhere!

Victim:   |  Group: 
LT flag

nordspace.lt 

Company logo
Ransomware Group:

Discovery Date: 2024-06-10 20:15

Sector: Construction
Nordspace offers smart, compact and versatile boxes in the biggest cities of Lithuania.

Victim:   |  Group: 
KR flag

wave2.co.kr 

Company logo
Ransomware Group:

Discovery Date: 2024-06-10 13:48

Sector: Technology
eWave Corp.'s Precision Agriculture/Livestock Tech is a customized livestock farming technology for the 4th Industrial Revolution era that provides a farm monitoring and control system through an integrated process.

Victim:   |  Group: 
BR flag

aletech.com.br 

Company logo
Ransomware Group:

Discovery Date: 2024-05-07 02:00

Sector: Technology
Somos uma Edtech que busca, através da oferta de soluções tecnológicas, elevar o nível da educação no Brasil.

Victim:   |  Group: 
MX flag

eskarabajo.mx 

Company logo
Ransomware Group:

Discovery Date: 2024-05-06 16:38

Somos una marca que a través de la experiencia artística y la libre expresión acompañamos a las tribus urbanas.

Victim:   |  Group: 
IN flag

ikfhomefinance.com 

Company logo
Ransomware Group:

Discovery Date: 2024-05-04 16:22

IKF Home Finance is a new age housing finance company rooted in the exceptional experience, values and track record of IKF in financing business and driven by the vision to transform lives in a new, thriving, aspirational India through flexible home loans.

Victim:   |  Group: 
IN flag

sandipuniversity.edu.in 

Company logo
Ransomware Group:

Discovery Date: 2024-04-26 14:19

Sector: Not Found
Sandip University is a thriving hub of 21st century higher education.It is a UGC-approved University in India, located in Nashik, Maharashtra. The University is set in a picturesque lush green Wi-Fi enabled campus spanning across 250+ acres and is home to cutting-edge infrastructure for a holistic student experience.

Victim:   |  Group: 
BY flag

atriline.by 

Company logo
Ransomware Group:

Discovery Date: 2024-04-25 22:26

Sector: Technology
Онлайн продажа билетов по маршруту Бобруйск - Минск - Бобруйск ⭐️ Покупка занимает 2 минуты ⭐️ Ознакомьтесь с рассписанием и ценами ️️⭐️ Бесплатный возврат, удобное приложение для телефона, sms оповещение.

Victim:   |  Group: 
BR flag

bzrastreador.com.br 

Company logo
Ransomware Group:

Discovery Date: 2024-04-25 02:03
Estimated Attack Date: 2024-04-24

A BZ Sistemas é uma empresa focada em soluções para empresas, visando otimização de recursos.

Victim:   |  Group: 
US flag

bigtoe.yoga 

Company logo
Ransomware Group:

Discovery Date: 2024-04-15 19:20

Book an in-home Massage or Private Yoga appointment with a provider in seconds! Bigtoe is the easiest way to book mobile massage appointments with a 5-start massage therapist.

Victim:   |  Group: 
BR flag

qint.com.br 

Company logo
Ransomware Group:

Discovery Date: 2024-04-15 01:36
Estimated Attack Date: 2024-04-14

Sector: Technology
Oferecemos um Dashboard de acompanhamento e gestão da sua operação para que reaja em tempo real e escale o seu negócio.

Victim:   |  Group: 
GB flag

thsp.co.uk 

Company logo
Ransomware Group:

Discovery Date: 2024-04-12 22:41
Estimated Attack Date: 2024-04-04

For 30 years, THSP have been putting people at the heart of all we do to build a better workplace culture and make sure everyone gets home safely. Our hands-on approach to Employment Law and HR matters, combined with on-site audits and inspections of your Health and Safety practices, allow you to successfully operate your business with full support when you need it.

Victim:   |  Group: 
GB flag

tommyclub.co.uk 

Company logo
Ransomware Group:

Discovery Date: 2024-04-12 22:40

RBLI is a national charity that supports the Armed Forces, people with disabilities and people who are unemployed through various programmes and services. It offers care, support, employment, social enterprise and housing for veterans, as well as a large veteran village with a full care pathway.

Victim:   |  Group: 
SA flag

baheyabeauty.com 

Company logo
Ransomware Group:

Discovery Date: 2024-04-12 04:35
Estimated Attack Date: 2024-04-11

It is a holdings company based in the Kingdom of Saudi Arabia established in 2006 owns three institutions in different fields, the first is specialized in the retail sale of beauty and spa products, working in the production and distribution of consumer goods specialized in this field, so we have our own production lines, which helped us to be self-sufficient, as the owner of beauty centers, which are marketed under the Baheya brand.

Victim:   |  Group: 
SA flag

baheya.com 

Company logo
Ransomware Group:

Discovery Date: 2024-04-12 02:56
Estimated Attack Date: 2024-04-11

Sector: Healthcare
It is a holdings company based in the Kingdom of Saudi Arabia established in 2006 owns three institutions in different fields, the first is specialized in the retail sale of beauty and spa products, working in the production and distribution of consumer goods specialized in this field, so we have our own production lines, which helped us to be self-sufficient, as the owner of beauty centers, which are marketed under the Baheya brand.

Victim:   |  Group: 
US flag

hawkremote2.com 

Company logo
Ransomware Group:

Discovery Date: 2024-04-11 19:16
Estimated Attack Date: 2024-02-08

Sector: Technology
Hawk SCADA has been installing SCADA systems in multiple industries since 1994. Our products are preferred by our customers, in part because we offer multiple modes of monitoring delivered on a secure multi-user platform.

Victim:   |  Group: 
US flag

hawkremote.com 

Company logo
Ransomware Group:

Discovery Date: 2024-04-11 19:16
Estimated Attack Date: 2024-02-08

Sector: Technology
Hawk SCADA has been installing SCADA systems in multiple industries since 1994. Our products are preferred by our customers, in part because we offer multiple modes of monitoring delivered on a secure multi-user platform.

Victim:   |  Group: 
US flag

hirebus.com 

Company logo
Ransomware Group:

Discovery Date: 2024-04-11 19:15
Estimated Attack Date: 2024-02-21

With HireBus, you can accurately identify the success potential of candidates fast and effectively develop your employees once hired. Using a scientifically-validated behavioral assessment powered by Behavioral Essentials and industry-specific profiling, we help you quickly assess a candidate’s fit for common roles in the home-services industry, and give you tools to understand and keep your employees.

Victim:   |  Group: 
IN flag

ezeldsolutions.com 

Company logo
Ransomware Group:

Discovery Date: 2024-04-11 19:14
Estimated Attack Date: 2024-02-21

Sector: Technology
In late 2017, we established EZ ELD Solutions. The initial mission of our company was to be provide the Indian Community across the country, with a reliable, simple, and driver-friend solution that complied with the ELD Mandate. We as a company had high expectations for our product, and we were overwhelmed with response received from the trucking industry. Although we are a relatively new company, we have no shortage of ambition or enthusiasm. At our core we are a trucking company, but our recent introduction to the tech sector, has allowed us to identify several other sectors within the industry that are in need of dire improvement. We have begun developing new products that we believe will keep us at the forefront of a rapidly changing world.

Victim:   |  Group: 
US flag

zanebenefits.com 

Company logo
Ransomware Group:

Discovery Date: 2024-04-11 19:14
Estimated Attack Date: 2024-03-04

Sector: Healthcare
Zane Benefits is a legacy HR and employee benefits platform empowering employees to buy individual health plans funded by their employer.

Victim:   |  Group: 
US flag

taskhound.com 

Company logo
Ransomware Group:

Discovery Date: 2024-04-11 19:13
Estimated Attack Date: 2024-03-14

Sector: Technology
TaskHound is an all-inclusive, easy-to-use time tracking solution for any size business, with Unlimited Everything, for one fixed price.

Victim:   |  Group: 
LK flag

lankacom.net 

Company logo
Ransomware Group:

Discovery Date: 2024-04-11 19:12
Estimated Attack Date: 2024-03-14

LankaCom is a Sri Lanka–based telecommunications company. Founded in 1991, it is a subsidiary of Singtel and was the first company granted a Communication Operator License in the country.

Victim:   |  Group: 
IN flag

adachikan.com 

Company logo
Ransomware Group:

Discovery Date: 2024-04-11 19:12
Estimated Attack Date: 2024-03-18

Ada conceptualized the traditional art of Lucknow Chikankari as a timeless fashion statement by bringing together the finest artisans receiving delightful appreciation for the cognoscente over the years.Our flagship store in Hazratganj Lucknow expanses over 20,000 sq ft to cover a wide range of products across categories. We re-create an elaborate all-encompassing royal Awadhi feel at our stores to enhance our customer’s shopping experience while picking out their favourite Lucknowi outfit or accessory

Victim:   |  Group: 
IN flag

agribazaar.com 

Company logo
Ransomware Group:

Discovery Date: 2024-04-11 19:11
Estimated Attack Date: 2024-03-20

Agribazaar is India’s leading tech platform for all agri needs to empower farmers and traders nationwide. It's a seamless online marketplace for crops, expanding market access and income potential. It provides insights on crop health, sustainable farming practices, irrigation, weather, and fair market rates.

Victim:   |  Group: 
GB flag

wexer.com 

Company logo
Ransomware Group:

Discovery Date: 2024-04-11 19:11
Estimated Attack Date: 2024-04-08

Sector: Technology
Enabling fitness anywhere. We make world-class exercise accessible to more people with best in class technology.

Victim:   |  Group: