Ransom! Alliance Select Foods International (MAR-2026) A ransomware claim attributed to the threat actor dragonforce targets Alliance Select Foods International, Inc., alleging data encryption and ransom demands. ASFII is a leading seafood company specializing in tuna canning with a global presence, and it is assessing the incident's potential impact on operations and stakeholders. #Philippines

Alliance Select Foods International, a top tuna canning company in the Philippines, faces a ransomware attack by Dragonforce. Data encryption and ransom demands threaten its global operations. #RansomwareAttack #FoodIndustry #Philippines

Ransom! Greenology Products (MAR-2026) Threat actor incransom claims to have conducted a ransomware incident against Greenology Products in the United States, threatening data encryption or exposure. The claim frames Greenology's eco-friendly mission and customer-centric ethos as context for the attack, but provides no independent verification of a breach #UnitedStates

Ransomware group incransom claims an attack on Greenology Products, targeting their eco-friendly mission and customer focus. No independent proof of data breach so far. #RansomwareAttack #GreenTech #UnitedStates

Ransom! Ming Hwei Energy (MAR-2026) Ming Hwei Energy Co., Ltd., a small private B2B firm (11–50 staff,

Ming Hwei Energy, a small Taiwanese solar cell manufacturer, was hit by Exitium ransomware, disrupting operations amid intense competition with Chinese pricing. Incident discovered in March 2026. #Taiwan #EnergySector #RansomwareAttack

Ransom! kob.com (MAR-2026) A ransomware claim targets kob.com in the United States, attributed to threat actor ALP-001, reporting $22 million in revenue and 1.127 TB of storage under the KON variant. The description links KON to KOB 4 branding and Eyewitness News 4 content, with a deadline set for 2026-04-02 23:23:40. #UnitedStates

Ransomware group ALP-001 targets kob.com in the US, demanding $22M with 1.127TB data at risk under KON variant linked to KOB 4 and Eyewitness News 4. Deadline set for April 2, 2026. #RansomwareAttack #DataBreach #UnitedStates

Ransom! lacor.es (MMM-YYYY, example JAN-2026 from this date 2026-03-29 01:39:38.184881) ALP-001, a ransomware threat actor, claims to have compromised lacor.es in Spain and left a taunting note: 'Guys, i just want to have SOME fun About this Corp, i know its small, but i like the files they have LOL,' setting a deadline of 2026-04-08 00:09:29. The operation reportedly generated $9 million in revenue and exfiltrated 182.71 GB of data from lacor.es, affecting Spain #Spain

Ransomware group ALP-001 claims breach of lacor.es in Spain, exfiltrating 182.71 GB of data and generating $9M in revenue. Deadline set for 2026-04-08. Impact affects Spanish sector. #RansomwareAttack #DataBreach #Spain

Ransom! kyoceradocumentsolutions.eu (MAR-2026) ALP-001, a threat actor, claims a ransomware incident against Kyocera Documents Solutions Europe Management BV (kyoceradocumentsolutions.eu), a United Kingdom-based firm in Office Products Retail & Distribution, involving 75GB of storage. The company reportedly has $154.1 million in revenue and a deadline of 2026-04-07 23:54:11 #EuropeanUnion

Kyocera Document Solutions Europe faced a ransomware attack by ALP-001, compromising 75 GB of data. The UK-based office products retailer reported significant storage breach impacting its operations. #RansomwareAttack #OfficeProducts #UnitedKingdom

Ransom! D**o*s** Fr**e* *A (MAR-2026) A ransomware claim targets the victim D**o*s** Fr**e* *A, attributed to the threat actor nightspire. Data is not available now #Unknown

Ransomware group nightspire claims to have targeted victim D**o*s** Fr**e* *A in a recent incident discovered on March 29, 2026. Data availability remains unknown. #RansomwareAttack #DataBreach #Nightspire

Ransom! terix.com (MAR-2026) The ransomware claim targets Terix (terix.com) in the United States, attributed to threat actor ALP-001 with connections to Canada, and cites $26.5 million revenue and 251GB of storage. Terix is described as TERiX International, a data center maintenance and multi-vendor support services provider founded in 1997, with a deadline of 2026-04-07 12:11:01. #UnitedStates #Canada

Ransomware group ALP-001 demands $26.5M from Terix, a US-based data center service provider, after compromising 251GB of data. Deadline set for April 7, 2026. #UnitedStates #RansomwareAttack #DataBreach

Ransom! Kerjaya Prospek Group (MAR-2026) Kerjaya Prospek Group reports a ransomware incident attributed to the threat actor qilin, resulting in encryption of key systems and potential data exposure. The attackers claim to have gained unauthorized access to internal networks and are demanding a ransom to restore operations. #Malaysia

Kerjaya Prospek Group faces a ransomware attack by threat actor qilin, leading to encrypted systems and possible data exposure. The construction company in Malaysia is dealing with unauthorized network access. #RansomwareAttack #Construction

Ransom! A A Al Moosa Enterprises (ARENCO Group) (MAR-2026) A ransomware claim targets A A Al Moosa Enterprises (ARENCO Group), a Dubai-based conglomerate. The incident is attributed to the threat actor payload. #UnitedArabEmirates

A.A. Al Moosa Enterprises (ARENCO Group), a Dubai-based conglomerate, has been targeted by a ransomware attack attributed to the threat actor payload. Incident discovered on March 28, 2026. #RansomwareAttack #DubaiBusiness #UnitedArabEmirates

Ransom! ITWAL (JAN-2026) The ransomware claim lists ITWAL as the victim in the United States, with the threat actor identified as qilin. Details are N/A. #UnitedStates

Ransomware group Qilin claims attack on ITWAL in the US. Details remain undisclosed. Incident first reported on March 27, 2026. #RansomwareAttack #DataBreach #UnitedStates

Ransom! Sheladia Associates (MAR-2026) Ransomware group akira claims to have breached Sheladia Associates, Inc., a US-based multidisciplinary consulting firm, and threatens to release stolen corporate data. The data reportedly includes a large volume of employee personal documents (passports, driver licenses, credit cards, immigration docs), project files, medical and financial information, contracts and NDAs, client files, and internal confidential files, with a warning that data will be uploaded soon #UnitedStates

Ransomware group Akira has breached US-based Sheladia Associates, exposing employee personal data, project files, medical info, contracts, and client records. Data leak expected soon. #RansomwareAttack #DataBreach #UnitedStates

Ransom! Fondation Boghossian (MAR-2026) A ransomware claim attributes the attack on Fondation Boghossian to the threat actor qilin, describing encryption of files and potential data exfiltration. The claim indicates the operation targeted Belgium, with Fondation Boghossian identified as the victim. #Belgium

Fondation Boghossian in Belgium hit by ransomware attack attributed to threat actor Qilin, involving file encryption and possible data exfiltration. Incident discovered March 27, 2026. #RansomwareAttack #DataBreach #Belgium

Ransom! GeoMechanics Technologies (MAR-2026) Threat actor akira claims a ransomware attack against GeoMechanics Technologies, based in the United States and formerly known as Terralog Technologies. They threaten to upload corporate data soon, including employee personal documents (passports, driver licenses, SSNs and so on), project files, medical information, financials, contracts and NDAs, client files, and other sensitive information #UnitedStates

Threat actor akira claims a ransomware attack on US-based GeoMechanics Technologies (formerly Terralog Technologies), threatening to leak sensitive corporate and employee data including passports, SSNs, contracts, and medical info. #RansomwareAttack #DataLeak

Ransom! Sheraton Hotel (MAR-2026) Worldleaks claims to have compromised the Sheraton Hotel in the United States in a ransomware incident. The message threatens data exfiltration and the public release of sensitive information unless a ransom is paid. #countryunitedstates

Worldleaks has compromised Sheraton Hotel in the US through ransomware, threatening to leak sensitive data unless a ransom is paid. Incident impacts a major name in hospitality since 1937. #UnitedStates #RansomwareAttack #HospitalitySector

Ransom! CIM (MAR-2026) Worldleaks claims to have breached CIM, a Germany-based real estate and infrastructure investment firm, deploying ransomware to encrypt systems and exfiltrate data. The claim emphasizes CIM's diverse portfolio—hotels, retail, residential properties, and renewable energy infrastructure—and asserts that the attack would disrupt operations and affect stakeholders across Germany #Germany

Worldleaks claims to have deployed ransomware on CIM, a Germany-based real estate and infrastructure firm, encrypting systems and stealing data. Impact spans hotels, retail, residential, and renewable energy sectors. #RansomwareAttack #RealEstate

Ransom! kdmpop.com (MAR-2026) Chaos claims to have conducted a ransomware attack against kdmpop.com, targeting KDM P.O.P. Solutions Group, a Cincinnati-based company with additional facilities in Cincinnati, Nashville, Atlanta and Cleveland. KDM P.O.P. Solutions Group has been in business since 1970 and specializes in custom, innovative retail POP print solutions at the point of purchase. #UnitedStates

Ransomware group Chaos targets KDM P.O.P. Solutions Group, a retail POP print specialist with locations in Cincinnati, Nashville, Atlanta, and Cleveland. Incident discovered on March 27, 2026. #RansomwareAttack #US #RetailPrint

Ransom! meridenct.gov (MAR-2026) A ransomware claim alleges meridenct.gov, the City of Meriden in Connecticut, was targeted by threat actor incransom, potentially disrupting government services and public resources managed by Meriden 2020. Meriden 2020 provides a broad range of government, business, recreational, educational, and transportation resources for residents and visitors of Meriden, CT, with about 200 employees and $23 million in revenue #UnitedStates

Meriden, CT government targeted by ransomware actor incransom, affecting services managed by Meriden 2020. The incident impacts public, business, recreational, and transportation resources. #RansomwareAttack #PublicSector #UnitedStates

Ransom! Leighton (MAR-2026) Worldleaks claims to have breached Leighton, a multinational construction company, encrypting core systems and exfiltrating sensitive project data tied to its GB-based operations in a ransomware attack. The threat actor demands a ransom and threatens to release the stolen files if Leighton does not pay, potentially impacting UK projects. #UnitedKingdom

Ransomware group Worldleaks has breached Leighton, a multinational construction firm, encrypting key systems and stealing sensitive UK project data. A ransom demand threatens potential data exposure. #RansomwareAttack #Construction #UnitedKingdom

Ransom! Orient Petroleum (MAR-2026) A ransomware claim from worldleaks targets Orient Petroleum Resources Plc, described in the AI-generated background as a Nigerian oil and gas company. The attackers allegedly threaten data exposure or encryption, with the incident linked to the United Kingdom (GB) as the impacted country. #UnitedKingdom

Orient Petroleum Resources Plc, a Nigerian energy company, faces a ransomware attack by worldleaks, threatening data exposure or encryption in the UK. Incident reported March 27, 2026. #RansomwareAttack #OilAndGas #UnitedKingdom

Omax Autos Reports Ransomware Attack as IT Systems Under Investigation Omax Autos Limited confirmed on 27 March 2026 that its IT infrastructure was hit by a ransomware attack after suspicious activity was detected the day before. The company reported the incident to the Bombay and Delhi stock exchanges while stating core operations and production lines remain intact, though investors reacted with volatility amid fears of a possible data leak. #OmaxAutos #BombayStockExchange

Omax Autos Limited confirmed a ransomware attack on its IT systems reported on March 27, 2026. Core operations remain intact as investigations continue amid investor concerns over potential data leaks. #OmaxAutos #RansomwareAttack #India

Ransom! Edward Beiner (MAR-2026) Dragonforce claims a ransomware attack against Edward Beiner, a US-based luxury eyewear retailer. The claim suggests attackers may disrupt Edward Beiner's premium eyewear and eye care services in the United States. #UnitedStates

DragonForce claims a ransomware attack targeting Edward Beiner, a US luxury eyewear retailer known for designer sunglasses. This may disrupt premium eyewear and eye care services across the United States. #RansomwareAttack #LuxuryEyewear

Ransom! Axiomatic Technologies Corporation (MAR-2026) Ransomware actor akira claims it will upload 10 GB of Axiomatic Technologies Corporation's corporate data, including employee personal documents (credit cards, medical records and other HR files), project files, financials, contracts and agreements, client files, and NDAs. Axiomatic Technologies is a Canadian-based designer and manufacturer of electronic controllers and power management converters, with the United States identified as the impacted country. #UnitedStates

Ransomware group akira claims to leak 10 GB of sensitive data from Axiomatic Technologies Corp, including employee personal info, contracts, financials, and client files. Impacted country: US. #RansomwareAttack #DataLeak #UnitedStates

Ransom! Kash Patel current director of the FBI (MAR-2026) Handala claims responsibility for a ransomware campaign and vows retaliation after the FBI seized their domains and announced a $10 million reward for Handala Hack members, promising a response that will be remembered forever. The claim cites Kash Patel as the current director of the FBI and asserts the attack will have a lasting impact on the United States. #UnitedStates

Ransomware group Handala claims responsibility for an attack targeting Kash Patel, the current FBI director. The group vows a lasting retaliation after the FBI seized their domains and offered a $10M reward. #FBI #UnitedStates #RansomwareAttack

Ransom! Frontier Technologies (MAR-2026) Frontier Technologies (NFT), a system integrator bridging industrial automation and business data, reports a ransomware claim from threat actor 'akira' who purports to exfiltrate 60 GB of corporate data, including project files, financial documents, and contracts. The attacker warns they will upload the data soon, potentially impacting sectors such as oil and gas, discrete manufacturing, process manufacturing, and food and beverage. #Unknown

Frontier Technologies faces a ransomware claim from actor ‘akira’ who allegedly exfiltrated 60 GB of sensitive data, including project files and contracts, potentially impacting multiple manufacturing sectors. #RansomwareAttack #IndustrialAutomation

Gentlemen Attack: Groupe Courtois, STS Travel & Durable Superior The Gentlemen ransomware group claims to have breached multiple organizations across Europe and North America and has posted three new alleged victims on its dark web extortion portal. The group says it exfiltrated 13.15 GB from Groupe Courtois Automobiles, 18.49 GB from STS Travel, and 1.03 TB from Durable Superior Casters....

The Gentlemen ransomware group claims breaches at Groupe Courtois Automobiles (France), STS Travel (USA), and Durable Superior Casters (USA), exfiltrating over 1 TB of data in total. #DataBreach #France #RansomwareAttack

Bearlyfy Targets 70+ Firms With Ransomware
Read More: buff.ly/2rcEOH9

#Bearlyfy #GenieLocker #RansomwareAttack #Hacktivism #CyberExtortion #RussiaCyber #ThreatActors #InfosecAlert

Ransom! Schlam Stone & Dolan LLP (MAR-2026) Anubis, a ransomware threat actor, claims a data breach at Schlam Stone & Dolan LLP, a US-based law firm. The breach purportedly affected clients ranging from government institutions to Fortune 500 companies #UnitedStates

Schlam Stone & Dolan LLP, a US law firm serving government and Fortune 500 clients, fell victim to a ransomware attack attributed to the Anubis actor. Data breach confirmed on March 27, 2026. #RansomwareAttack #LawFirm #USA

Ransom! Scalian (MAR-2026) Anubis claims a ransomware data breach affecting Scalian, a major French IT company. The claim attributes the incident to the threat actor Anubis and indicates the impact is in France #France

Ransomware attack reported on Scalian, a major French IT firm. The breach is linked to the threat actor Anubis, impacting technology sector data in France. #RansomwareAttack #DataBreach #France

Ransom! ActionPower (MAR-2026) ActionPower is the victim in a ransomware claim attributed to the threat actor crypto24, involving file encryption and potential data exfiltration. The incident is associated with South Korea (KR), indicating the affected country #SouthKorea

ActionPower targeted in a ransomware attack by threat actor crypto24, involving file encryption and possible data theft. Incident traced to South Korea, discovered March 27, 2026. #Crypto24 #RansomwareAttack #SouthKorea