SecLens 情报中心

网安资讯,一网打尽。汇集权威漏洞通告与行业要闻,结合分组浏览、智能过滤、RSS订阅 和 Webhook 推送,多通道拓展您的安全情报视野。

威胁情报

针对攻击活动、样本与IOC的持续情报更新。

  • Jeffrey Burr by anubis

    发布时间 2026-06-06 06:20 (UTC+08:00) 抓取时间 2026-06-06 06:48 (UTC+08:00)

    [www.jeffreyburr.com]

    扩展字段 
    {
  "activity": "Not Found",
  "attack_date": "2026-06-05T22:20:22.407427+00:00",
  "country": null,
  "discovered_at": "2026-06-05T22:20:38.209074+00:00",
  "duplicate_count": 0,
  "group": "anubis",
  "permalink": "https://www.ransomware.live/id/SmVmZnJleSBCdXJyQGFudWJpcw==",
  "post_url": "http://om6q4a6cyipxvt7ioudxt24cw4oqu4yodmqzl25mqd2hgllymrgu4aqd.onion/r/zSH1aP0WJLX2Ip8dc202inJgQwZwsSKY4aNybqek6jqJzwa+DwYjVG2m9yEf9HnNh9ABxov52rJ0XPhiXxw1lWFISTI2ZzR6",
  "press": null,
  "screenshot": "https://images.ransomware.live/victims/2b49b5dcdab99d01fbe8a17d98e670ba.png",
  "website": null
}
    Ransomware.live 近期受害者 group:anubis has:leak-post has:screenshot source:ransomware-live type:ransomware-victim ransomware threat_intelligence

  • Aspire hospital by nova

    发布时间 2026-06-06 05:23 (UTC+08:00) 抓取时间 2026-06-06 05:47 (UTC+08:00)

    Both aspirehospitals.co.in and aspirehospitals.in Under Nova Company Control, servers encrypted and patients data stolen, A Healthcare provider based on Plot No: 163, 208, Ekamra Road, Unit-6, Ganga Nagar, Bhubaneswar, India, Odisha, you need to think well to contact us for recover and to secure patients records - Nova Provide tree and samples from stolen da

    扩展字段 
    {
  "activity": "Healthcare",
  "attack_date": "2026-06-05T21:23:44.560925+00:00",
  "country": null,
  "discovered_at": "2026-06-05T21:23:59.555599+00:00",
  "duplicate_count": 0,
  "group": "nova",
  "permalink": "https://www.ransomware.live/id/QXNwaXJlIGhvc3BpdGFsQG5vdmE=",
  "post_url": "http://novadmrkp4vbk2padk5t6pbxolndceuc7hrcq4mjaoyed6nxsqiuzyyd.onion/aspire-hospital",
  "press": null,
  "screenshot": "https://images.ransomware.live/victims/60e04b82fbc291ad59394d352105d6ca.png",
  "website": null
}
    Ransomware.live 近期受害者 activity:healthcare group:nova has:leak-post has:screenshot source:ransomware-live type:ransomware-victim ransomware threat_intelligence

  • schultz.com.br by krybit

    发布时间 2026-06-06 05:22 (UTC+08:00) 抓取时间 2026-06-06 05:47 (UTC+08:00)

    Schultz Operadora de Turismo helps people explore the world with easy travel planning. They handle everything from airli...

    扩展字段 
    {
  "activity": "Business Services",
  "attack_date": "2026-06-05T21:21:56.449662+00:00",
  "country": "BR",
  "discovered_at": "2026-06-05T21:22:10.387346+00:00",
  "duplicate_count": 0,
  "group": "krybit",
  "infostealer": {
    "employees": 0,
    "employees_url": 0,
    "infostealer_stats": {},
    "last_employee_compromised": null,
    "last_user_compromised": null,
    "thirdparties": 1,
    "update": "2026-06-05T21:21:56",
    "users": 181,
    "users_url": 63
  },
  "permalink": "https://www.ransomware.live/id/c2NodWx0ei5jb20uYnJAa3J5Yml0",
  "post_url": "http://krybitqsdzwmhnitvwuhvsntfgf2wrhxveyxroxpc44c6gkft2cqldyd.onion/blog/f48b1e6bde5227d8950b8c30a544e9ba2a6694f6b9f19d8bec21f699ea1abbe8/",
  "press": null,
  "screenshot": "https://images.ransomware.live/victims/bd5b16afe85536d90e7f19138c4ca30f.png",
  "website": "schultz.com.br"
}
    Ransomware.live 近期受害者 activity:business-services country:br group:krybit has:infostealer has:leak-post has:screenshot source:ransomware-live type:ransomware-victim ransomware threat_intelligence

  • D&M Contractors by anubis

    发布时间 2026-06-06 04:50 (UTC+08:00) 抓取时间 2026-06-06 05:00 (UTC+08:00)

    A small breach, real employee data.

    扩展字段 
    {
  "activity": "Construction",
  "attack_date": "2026-06-05T20:50:26.499998+00:00",
  "country": null,
  "discovered_at": "2026-06-05T20:50:58.625034+00:00",
  "duplicate_count": 0,
  "group": "anubis",
  "permalink": "https://www.ransomware.live/id/RCZNIENvbnRyYWN0b3JzQGFudWJpcw==",
  "post_url": "http://om6q4a6cyipxvt7ioudxt24cw4oqu4yodmqzl25mqd2hgllymrgu4aqd.onion/r/7ennLNxUKQ+HQYzWqdXuLdC6C5QrL0wfb8M5AZCTds3hzzunjNKym2DApCALNYMhfVLoA49bBTZQ2wEE3O4zd6bXpGSFJq",
  "press": null,
  "screenshot": "https://images.ransomware.live/victims/8fd100887388a977df70880ec73960ad.png",
  "website": null
}
    Ransomware.live 近期受害者 activity:construction group:anubis has:leak-post has:screenshot source:ransomware-live type:ransomware-victim ransomware threat_intelligence

  • obrieneng.com by incransom

    发布时间 2026-06-06 04:23 (UTC+08:00) 抓取时间 2026-06-06 04:47 (UTC+08:00)

    contract nda confidential gov\dot\military\va\sam.gov other

    扩展字段 
    {
  "activity": "Construction",
  "attack_date": "2026-06-05T20:06:41.957000+00:00",
  "country": "US",
  "discovered_at": "2026-06-05T20:23:40.606339+00:00",
  "duplicate_count": 0,
  "group": "incransom",
  "infostealer": {
    "employees": 0,
    "employees_url": 0,
    "infostealer_stats": {},
    "last_employee_compromised": null,
    "last_user_compromised": null,
    "thirdparties": 1,
    "update": "2026-06-05T20:23:21",
    "users": 0,
    "users_url": 0
  },
  "permalink": "https://www.ransomware.live/id/b2JyaWVuZW5nLmNvbUBpbmNyYW5zb20=",
  "post_url": "http://incblog6qu4y4mm4zvw5nrmue6qbwtgjsxpw6b7ixzssu36tsajldoad.onion/blog/disclosures/6a232c515ae71db30c46b0a3",
  "press": null,
  "screenshot": "https://images.ransomware.live/victims/9857db7a7f715913ce24b634eaf394fd.png",
  "website": "obrieneng.com"
}
    Ransomware.live 近期受害者 activity:construction country:us group:incransom has:infostealer has:leak-post has:screenshot source:ransomware-live type:ransomware-victim ransomware threat_intelligence

  • Demand.ioNEW by coinbasecartel

    发布时间 2026-06-06 03:21 (UTC+08:00) 抓取时间 2026-06-06 03:47 (UTC+08:00)

    [AI generated] N/A

    扩展字段 
    {
  "activity": "Technology",
  "attack_date": "2026-06-05T19:21:24.643957+00:00",
  "country": null,
  "discovered_at": "2026-06-05T19:21:43.032988+00:00",
  "duplicate_count": 0,
  "group": "coinbasecartel",
  "permalink": "https://www.ransomware.live/id/RGVtYW5kLmlvTkVXQGNvaW5iYXNlY2FydGVs",
  "post_url": "http://fjg4zi4opkxkvdz7mvwp7h6goe4tcby3hhkrz43pht4j3vakhy75znyd.onion/companies/demand",
  "press": null,
  "screenshot": "https://images.ransomware.live/victims/42f28d16bf38ea457582f662f37d090a.png",
  "website": "Demand.ioNEW"
}
    Ransomware.live 近期受害者 activity:technology group:coinbasecartel has:leak-post has:screenshot source:ransomware-live type:ransomware-victim ransomware threat_intelligence

  • Cambridge Mobile TelematicNEW by coinbasecartel

    发布时间 2026-06-06 03:21 (UTC+08:00) 抓取时间 2026-06-06 03:47 (UTC+08:00)

    [AI generated] Cambridge Mobile Telematics (CMT) is a US-based telematics technology company headquartered in Cambridge, Massachusetts. It develops mobile sensing and data analytics platforms that measure driving behavior to improve road safety and reduce vehicle crashes. Its technology is used by insurers, rideshare companies, and fleets to assess risk and

    扩展字段 
    {
  "activity": "Technology",
  "attack_date": "2026-06-05T19:20:51.073785+00:00",
  "country": null,
  "discovered_at": "2026-06-05T19:21:12.870572+00:00",
  "duplicate_count": 0,
  "group": "coinbasecartel",
  "permalink": "https://www.ransomware.live/id/Q2FtYnJpZGdlIE1vYmlsZSBUZWxlbWF0aWNORVdAY29pbmJhc2VjYXJ0ZWw=",
  "post_url": "http://fjg4zi4opkxkvdz7mvwp7h6goe4tcby3hhkrz43pht4j3vakhy75znyd.onion/companies/cmtele",
  "press": null,
  "screenshot": "https://images.ransomware.live/victims/99575ac1e984f0ad3ae2b21b5e995992.png",
  "website": null
}
    Ransomware.live 近期受害者 activity:technology group:coinbasecartel has:leak-post has:screenshot source:ransomware-live type:ransomware-victim ransomware threat_intelligence

  • Kriete Truck Centers by securotrop

    发布时间 2026-06-05 22:53 (UTC+08:00) 抓取时间 2026-06-05 23:46 (UTC+08:00)

    Status: AWAITING Size: 221 GB

    扩展字段 
    {
  "activity": "Transportation/Logistics",
  "attack_date": "2026-06-05T00:00:00+00:00",
  "country": "US",
  "discovered_at": "2026-06-05T14:53:33.934446+00:00",
  "duplicate_count": 0,
  "group": "securotrop",
  "permalink": "https://www.ransomware.live/id/S3JpZXRlIFRydWNrIENlbnRlcnNAc2VjdXJvdHJvcA==",
  "post_url": "http://securo45z554mw7rgrt7wcgv5eenj2xmxyrsdj3fcjsvindu63s4bsid.onion",
  "press": null,
  "screenshot": "https://images.ransomware.live/victims/803e55e296e455f81d0ab9e71f8387ab.png",
  "website": "www.krietetrucks.com"
}
    Ransomware.live 近期受害者 activity:transportation-logistics country:us group:securotrop has:leak-post has:screenshot source:ransomware-live type:ransomware-victim ransomware threat_intelligence