Ransomware Group:  
Safepay



Sponsored by Hudson RockUse Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business


Sites | TTPs | Ransom Note(s) | Activity | Worldmap | Victims (25)

SafePay ransomware group uses LockBit builder


Sites

Title Available Last Visit FQDN Screenshot
SAFEPAY 🔴 2024-11-21 03:39:27.420054 nz4z6ruzcekriti5cjjiiylzvrmysyqwibxztk6voem4trtx7gstpjid.onion N/A
SAFEPAY 🟢 2024-11-21 05:08:31.443455 cqkrkmmivhakl3fwgxscurduu3znmroablt7jskxszkctixyseij5gad.onion 📸

TTPs

Ransom Note(s)

Activity over time

Worldmap

25 Victims

GB flag

www.microlise.com 

Company logo
Ransomware Group:

Discovery Date: 2024-11-20 23:31

Revenue $91.4 Million

Victim:   |  Group: 
AU flag

snowbrand.com.au 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:48
Estimated Attack Date: 2024-09-28

Revenue $9.5 Million

Victim:   |  Group: 
US flag

piburners.com 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:46

ZIP-156GB - Revenue $5 Million

Victim:   |  Group: 
NZ flag

tritonsourcing.co.nz 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:44

ZIP-10GB - Revenue $5 Million

Victim:   |  Group: 
IT flag

onnicar.it 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:42

ZIP-127GB - Revenue $23.2 Million

Victim:   |  Group: 
CA flag

kingswoodpark.ca 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:40

ZIP-55GB

Victim:   |  Group: 
US flag

incocommercial.com 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:38

Sector: Construction
ZIP-210GB - Revenue $5 Million

Victim:   |  Group: 
BE flag

euromedix.com 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:34

Sector: Healthcare
ZIP-105GB - Revenue $6.2 Million

Victim:   |  Group: 
BE flag

BusinessTraining.be 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:32

Sector: Education
ZIP-80GB - Revenue $16.3 Million

Victim:   |  Group: 
US flag

ccseniorservices 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:30

Sector: Healthcare
ZIP-50GB

Group: 
DE flag

ib-spieth.de 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:30

Sector: Construction
ZIP-415B - Revenue $5 Million

Victim:   |  Group: 
US flag

Safex.us 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:28

ZIP-70GB - Revenue $5,4 Million

Victim:   |  Group: 
US flag

millerservicecompany.com 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:26

Sector: Construction
ZIP-70GB

Victim:   |  Group: 
CA flag

mcauslan.com 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:24

ZIP-50GB - Revenue $16.1 Million

Victim:   |  Group: 
BB flag

stats.gov.bb 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:21

ZIP-330GB - Revenue $14.5 Million

Victim:   |  Group: 
US flag

smartdimensions 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:19

Sector: Not Found
ZIP-18GB - Revenue $<5 Million

Victim:   |  Group: 
US flag

westwood 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:19

Sector: Not Found
ZIP-50GB - Revenue $8.1 Million

Victim:   |  Group: 
US flag

threadfxinc/bluedogmerch 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:19

ZIP-70GB - Revenue $10.7 Million

Victim:   |  Group: 
CH flag

Pronatec 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:19
Estimated Attack Date: 2024-10-06

Revenue $5 Million

Victim:   |  Group: 
IL flag

Gilazo 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:19
Estimated Attack Date: 2024-09-28

Sector: Not Found
Revenue $5 Million

Victim:   |  Group: 
AR flag

OMINT 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:19
Estimated Attack Date: 2024-09-28

Sector: Healthcare
Revenue $540.7 Million

Victim:   |  Group: 
JP flag

NKCE Japan 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:19
Estimated Attack Date: 2024-09-29

Sector: Not Found
[AI generated] NKCE Japan is a company known for its expertise in engineering and manufacturing, specializing in precision components and advanced technological solutions. It serves various industries, providing high-quality products and innovative services. NKCE Japan is committed to excellence and customer satisfaction, leveraging cutting-edge technology and skilled craftsmanship to meet diverse client needs.

Victim:   |  Group: 
GB flag

Richmond Hill Primary Academy 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:19
Estimated Attack Date: 2024-09-20

Sector: Education
[AI generated] Richmond Hill Primary Academy is an educational institution focused on providing a nurturing and dynamic learning environment for children. It emphasizes academic excellence, personal growth, and community engagement. The academy offers a broad curriculum designed to foster creativity, critical thinking, and a love for learning, supported by a dedicated team of educators and staff.

Victim:   |  Group: 
AR flag

Active Cosmetic 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:19
Estimated Attack Date: 2024-09-19

Revenue $26.7 Million

Victim:   |  Group: 
IE flag

O'mara 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:19
Estimated Attack Date: 2024-08-26

Sector: Not Found
Revenue $5.7 Million

Victim:   |  Group: