Contact us Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

Kryptos

Kryptos is a small ransomware group first observed in October 2025, conducting simultaneous attacks across North America and Oceania on its debut day with a focus on professional, technical, and legal service sectors, with only 3 known documented victims.

Victims
5
 
First Discovered
2025-10-08
victim
Last Discovered
2025-11-06
victim
Inactive Since
194
days
Avg Delay
N/A
attack→claim
Infostealer
0.0%
victims with domain
Countries
5
hit
View Victims on World Map View Group Statistics
Attack Velocity — Last 12 months
Known Locations (1)
Favicon Title Type Available Last Visit Server Info FQDN
favicon Kryptos No 2026-04-28T07:24:26 kryptospnjzz7vfkr663bnqv3dxirmr3svo5zwq7cvu2wdfngujgknyd.onion
Target
Top 5 Activity Sectors
  • Public Sector 1
  • Education 1
  • Construction 1
  • Business Services 1
  • Financial Services 1
Top 5 Countries
  • LK flag Sri Lanka 1
  • IN flag India 1
  • US flag United States 1
  • AU flag Australia 1
  • CA flag Canada 1
Heatmap
YARA Rules (1)
Victims (5)
Logo
Provincial Department of Health Services Sri Lanka LK
Kryptos
Discovered: 2025-11-06 (6mo ago)
Health Services – 145 Institutions – 439 Field Clinic Centres – 850 Medical Officer…
Logo
Adichunchanagiri Institute Of Technology IN
Kryptos
Discovered: 2025-10-24 (6mo ago)
Educational Institute – 2500 Students – 150 Staff…
Logo
Mea************ US
Kryptos
Discovered: 2025-10-08 (7mo ago)
Architecture, Engineering & Design; 1,200 Employees…
Logo
Har****** AU
Kryptos
Discovered: 2025-10-08 (7mo ago)
Legal Services; 250 Employees…
Logo
Nor************* CA
Kryptos
Discovered: 2025-10-08 (7mo ago)
Financial Services; 450 Employees…