FalconFeeds.io
@falconfeedsio.bsky.social
Democratizing Cyber Security. Threat intelligence platform for Cyber Security professionals and Small / Medium business. Insights from Darkweb and Threat Actors.
📢 Ransomware Alert 🇺🇸
Cheyenne and Arapaho Tribes (cheyenneandarapaho-nsn.gov), a U.S.-based Government & Public Sector company, has reportedly fallen victim to RHYSIDA Ransomware.
Cheyenne and Arapaho Tribes (cheyenneandarapaho-nsn.gov), a U.S.-based Government & Public Sector company, has reportedly fallen victim to RHYSIDA Ransomware.
February 17, 2026 at 9:49 PM
📢 Ransomware Alert 🇺🇸
Cheyenne and Arapaho Tribes (cheyenneandarapaho-nsn.gov), a U.S.-based Government & Public Sector company, has reportedly fallen victim to RHYSIDA Ransomware.
Cheyenne and Arapaho Tribes (cheyenneandarapaho-nsn.gov), a U.S.-based Government & Public Sector company, has reportedly fallen victim to RHYSIDA Ransomware.
🚨 Ransomware Alert 🚨
The Wilson Group, LLC KW23 (thewilsongroup.com), a U.S.-based Information Technology (IT) Services company, has reportedly fallen victim to NightSpire Ransomware.
The Wilson Group, LLC KW23 (thewilsongroup.com), a U.S.-based Information Technology (IT) Services company, has reportedly fallen victim to NightSpire Ransomware.
February 17, 2026 at 9:47 PM
🚨 Ransomware Alert 🚨
The Wilson Group, LLC KW23 (thewilsongroup.com), a U.S.-based Information Technology (IT) Services company, has reportedly fallen victim to NightSpire Ransomware.
The Wilson Group, LLC KW23 (thewilsongroup.com), a U.S.-based Information Technology (IT) Services company, has reportedly fallen victim to NightSpire Ransomware.
🚨 Ransomware Alert 🚨
The Gentlemen Ransomware group has added 5 new victims to their dark web portal.
* SEAC 🇮🇹
* Pollo Cibao 🇩🇴
* Caribbean Medical Center 🇺🇸
* LINEUP KOREA 🇰🇷
* Sasin School of Management 🇹🇭
The Gentlemen Ransomware group has added 5 new victims to their dark web portal.
* SEAC 🇮🇹
* Pollo Cibao 🇩🇴
* Caribbean Medical Center 🇺🇸
* LINEUP KOREA 🇰🇷
* Sasin School of Management 🇹🇭
February 17, 2026 at 9:46 PM
🚨 Ransomware Alert 🚨
The Gentlemen Ransomware group has added 5 new victims to their dark web portal.
* SEAC 🇮🇹
* Pollo Cibao 🇩🇴
* Caribbean Medical Center 🇺🇸
* LINEUP KOREA 🇰🇷
* Sasin School of Management 🇹🇭
The Gentlemen Ransomware group has added 5 new victims to their dark web portal.
* SEAC 🇮🇹
* Pollo Cibao 🇩🇴
* Caribbean Medical Center 🇺🇸
* LINEUP KOREA 🇰🇷
* Sasin School of Management 🇹🇭
📢 Ransomware Alert:
We have begun monitoring a new ransomware group named "Payload" They have listed 2 victims on their dark web portal.
- Almacenes Distribuidores de la Frontera 🇲🇽
- SODIC 🇪🇬
We have begun monitoring a new ransomware group named "Payload" They have listed 2 victims on their dark web portal.
- Almacenes Distribuidores de la Frontera 🇲🇽
- SODIC 🇪🇬
February 17, 2026 at 7:48 PM
📢 Ransomware Alert:
We have begun monitoring a new ransomware group named "Payload" They have listed 2 victims on their dark web portal.
- Almacenes Distribuidores de la Frontera 🇲🇽
- SODIC 🇪🇬
We have begun monitoring a new ransomware group named "Payload" They have listed 2 victims on their dark web portal.
- Almacenes Distribuidores de la Frontera 🇲🇽
- SODIC 🇪🇬
📢 Ransomware Alert:
Meduza Locker have listed 6 new victims on their dark web portal.
- Kelsey School Division 🇨🇦
- Teknequip 🇵🇱
- Voltech 🇨🇦
- Powerscourt Estate 🇮🇪
- Rene Industries Ltd 🇺🇬
- unknown victim (Taiwan Hospital) 🇹🇼
Meduza Locker have listed 6 new victims on their dark web portal.
- Kelsey School Division 🇨🇦
- Teknequip 🇵🇱
- Voltech 🇨🇦
- Powerscourt Estate 🇮🇪
- Rene Industries Ltd 🇺🇬
- unknown victim (Taiwan Hospital) 🇹🇼
February 17, 2026 at 6:43 PM
📢 Ransomware Alert:
Meduza Locker have listed 6 new victims on their dark web portal.
- Kelsey School Division 🇨🇦
- Teknequip 🇵🇱
- Voltech 🇨🇦
- Powerscourt Estate 🇮🇪
- Rene Industries Ltd 🇺🇬
- unknown victim (Taiwan Hospital) 🇹🇼
Meduza Locker have listed 6 new victims on their dark web portal.
- Kelsey School Division 🇨🇦
- Teknequip 🇵🇱
- Voltech 🇨🇦
- Powerscourt Estate 🇮🇪
- Rene Industries Ltd 🇺🇬
- unknown victim (Taiwan Hospital) 🇹🇼
📢 Ransomware Alert 🇺🇸
LOCKBIT 5.0 Ransomware group has added 4 new victims to their dark web portal.
* Smile Care Dental Group
* Westervelt, Johnson, Nicoll & Keller LLC
* Xpress Nebs
* Crystal Coast Pain Management
LOCKBIT 5.0 Ransomware group has added 4 new victims to their dark web portal.
* Smile Care Dental Group
* Westervelt, Johnson, Nicoll & Keller LLC
* Xpress Nebs
* Crystal Coast Pain Management
February 17, 2026 at 5:37 PM
📢 Ransomware Alert 🇺🇸
LOCKBIT 5.0 Ransomware group has added 4 new victims to their dark web portal.
* Smile Care Dental Group
* Westervelt, Johnson, Nicoll & Keller LLC
* Xpress Nebs
* Crystal Coast Pain Management
LOCKBIT 5.0 Ransomware group has added 4 new victims to their dark web portal.
* Smile Care Dental Group
* Westervelt, Johnson, Nicoll & Keller LLC
* Xpress Nebs
* Crystal Coast Pain Management
🚨 Alert: New Hacktivist Alliance 🚨
HackHax and OverFlame have officially announced a new alliance.
HackHax and OverFlame have officially announced a new alliance.
February 17, 2026 at 4:26 PM
🚨 Alert: New Hacktivist Alliance 🚨
HackHax and OverFlame have officially announced a new alliance.
HackHax and OverFlame have officially announced a new alliance.
🚨DDoS Alert 🇺🇦
OverFlame claims to have targeted the website of Ukraine's State Enterprise Center of Assessment and Information (law.dpcoi.com.ua)
NB : The site is down at the moment
OverFlame claims to have targeted the website of Ukraine's State Enterprise Center of Assessment and Information (law.dpcoi.com.ua)
NB : The site is down at the moment
February 17, 2026 at 3:14 PM
🚨DDoS Alert 🇺🇦
OverFlame claims to have targeted the website of Ukraine's State Enterprise Center of Assessment and Information (law.dpcoi.com.ua)
NB : The site is down at the moment
OverFlame claims to have targeted the website of Ukraine's State Enterprise Center of Assessment and Information (law.dpcoi.com.ua)
NB : The site is down at the moment
🚨 DDoS Alert: 🇺🇸
Dark Strom Team claims to have targeted the website of Port of Los Angeles (portoflosangeles.org).
Dark Strom Team claims to have targeted the website of Port of Los Angeles (portoflosangeles.org).
February 17, 2026 at 2:16 PM
🚨 DDoS Alert: 🇺🇸
Dark Strom Team claims to have targeted the website of Port of Los Angeles (portoflosangeles.org).
Dark Strom Team claims to have targeted the website of Port of Los Angeles (portoflosangeles.org).
🚨 Ransomware Alert: 🇺🇸
LYNX ransomware group has added 3 new victims to their dark web portal.
* 123 LumpSum
* Goff Backa Alfera & Co, LLC
* Powers Miller Attorneys At Law
LYNX ransomware group has added 3 new victims to their dark web portal.
* 123 LumpSum
* Goff Backa Alfera & Co, LLC
* Powers Miller Attorneys At Law
February 17, 2026 at 2:15 PM
🚨 Ransomware Alert: 🇺🇸
LYNX ransomware group has added 3 new victims to their dark web portal.
* 123 LumpSum
* Goff Backa Alfera & Co, LLC
* Powers Miller Attorneys At Law
LYNX ransomware group has added 3 new victims to their dark web portal.
* 123 LumpSum
* Goff Backa Alfera & Co, LLC
* Powers Miller Attorneys At Law
February 17, 2026 at 2:07 PM
🚨 DDoS Alert 🇪🇸
Dark Storm Team claims to have targeted two websites in Spain.
* Sener
* Comunidad de Madrid
Dark Storm Team claims to have targeted two websites in Spain.
* Sener
* Comunidad de Madrid
February 17, 2026 at 1:58 PM
🚨 DDoS Alert 🇪🇸
Dark Storm Team claims to have targeted two websites in Spain.
* Sener
* Comunidad de Madrid
Dark Storm Team claims to have targeted two websites in Spain.
* Sener
* Comunidad de Madrid
📢 Ransomware Alert 🇺🇸
BRM, LLC (brmcompany.com), a U.S.-based accounting firm company, has reportedly fallen victim to Qilin ransomware.
🔍Key Details:
🛡️Threat actor: Qilin
📅 Reported on: February 17, 2025
BRM, LLC (brmcompany.com), a U.S.-based accounting firm company, has reportedly fallen victim to Qilin ransomware.
🔍Key Details:
🛡️Threat actor: Qilin
📅 Reported on: February 17, 2025
February 17, 2026 at 1:52 PM
📢 Ransomware Alert 🇺🇸
BRM, LLC (brmcompany.com), a U.S.-based accounting firm company, has reportedly fallen victim to Qilin ransomware.
🔍Key Details:
🛡️Threat actor: Qilin
📅 Reported on: February 17, 2025
BRM, LLC (brmcompany.com), a U.S.-based accounting firm company, has reportedly fallen victim to Qilin ransomware.
🔍Key Details:
🛡️Threat actor: Qilin
📅 Reported on: February 17, 2025
🚨 DDoS Alert: 🇺🇦
NoName claims to have targeted multiple websites in Ukraine.
* Dnipropetrovsk Regional State Administration
* Zaporizhzhia City Council
* Vinnytsia City Council
* Sumy City Council
NoName claims to have targeted multiple websites in Ukraine.
* Dnipropetrovsk Regional State Administration
* Zaporizhzhia City Council
* Vinnytsia City Council
* Sumy City Council
February 17, 2026 at 1:51 PM
🚨 DDoS Alert: 🇺🇦
NoName claims to have targeted multiple websites in Ukraine.
* Dnipropetrovsk Regional State Administration
* Zaporizhzhia City Council
* Vinnytsia City Council
* Sumy City Council
NoName claims to have targeted multiple websites in Ukraine.
* Dnipropetrovsk Regional State Administration
* Zaporizhzhia City Council
* Vinnytsia City Council
* Sumy City Council
February 17, 2026 at 11:51 AM
🚨 DDoS Alert: 🇦🇿
THE GARUDA EYE claims to have targeted the website of Experience Azerbaijan (azerbaijan.travel).
THE GARUDA EYE claims to have targeted the website of Experience Azerbaijan (azerbaijan.travel).
February 17, 2026 at 10:10 AM
🚨 DDoS Alert: 🇦🇿
THE GARUDA EYE claims to have targeted the website of Experience Azerbaijan (azerbaijan.travel).
THE GARUDA EYE claims to have targeted the website of Experience Azerbaijan (azerbaijan.travel).
🚨 DDoS Alert: 🇪🇸
NoName claims to have targeted multiple websites in Spain.
* Ministerio de Hacienda
* Diputación de Valladolid
* Ayuntamiento de Murcia
* Palma City Council
* Talgo
* Generalitat Valenciana
* City Council of Santiago de Compostela
NoName claims to have targeted multiple websites in Spain.
* Ministerio de Hacienda
* Diputación de Valladolid
* Ayuntamiento de Murcia
* Palma City Council
* Talgo
* Generalitat Valenciana
* City Council of Santiago de Compostela
February 17, 2026 at 9:21 AM
🚨 DDoS Alert: 🇪🇸
NoName claims to have targeted multiple websites in Spain.
* Ministerio de Hacienda
* Diputación de Valladolid
* Ayuntamiento de Murcia
* Palma City Council
* Talgo
* Generalitat Valenciana
* City Council of Santiago de Compostela
NoName claims to have targeted multiple websites in Spain.
* Ministerio de Hacienda
* Diputación de Valladolid
* Ayuntamiento de Murcia
* Palma City Council
* Talgo
* Generalitat Valenciana
* City Council of Santiago de Compostela
🚨 Ransomware Alert 🚨
Space Bears ransomware group has added 2 new victims to their dark web portal.
* KWANG YANG MOTOR CO., LTD. 🇹🇼
* WMC Metal Concepts 🇩🇪
Space Bears ransomware group has added 2 new victims to their dark web portal.
* KWANG YANG MOTOR CO., LTD. 🇹🇼
* WMC Metal Concepts 🇩🇪
February 17, 2026 at 8:15 AM
🚨 Ransomware Alert 🚨
Space Bears ransomware group has added 2 new victims to their dark web portal.
* KWANG YANG MOTOR CO., LTD. 🇹🇼
* WMC Metal Concepts 🇩🇪
Space Bears ransomware group has added 2 new victims to their dark web portal.
* KWANG YANG MOTOR CO., LTD. 🇹🇼
* WMC Metal Concepts 🇩🇪
📢 Ransomware Alert: 🇨🇳
Frontier Financial Group Limited (ffgwm.com), a financial services company, based in China, has reportedly fallen victim to Gunra ransomware.
🔍 Key Details:
🛡 Threat Actor: Gunra
📅 Reported on: 17-02-2026
Frontier Financial Group Limited (ffgwm.com), a financial services company, based in China, has reportedly fallen victim to Gunra ransomware.
🔍 Key Details:
🛡 Threat Actor: Gunra
📅 Reported on: 17-02-2026
February 17, 2026 at 6:58 AM
📢 Ransomware Alert: 🇨🇳
Frontier Financial Group Limited (ffgwm.com), a financial services company, based in China, has reportedly fallen victim to Gunra ransomware.
🔍 Key Details:
🛡 Threat Actor: Gunra
📅 Reported on: 17-02-2026
Frontier Financial Group Limited (ffgwm.com), a financial services company, based in China, has reportedly fallen victim to Gunra ransomware.
🔍 Key Details:
🛡 Threat Actor: Gunra
📅 Reported on: 17-02-2026
🚨 Ransomware Alert 🚨
Payouts King Ransomware group has added a new unidentified victim (w**.com) to their dark web portal.
NB: The group intends to publish the data within 6-7 days.
🔍 Key Details:
🛡️Threat actor: Payouts King
📅 Reported on: 17/02/26
⚠ Data Compromised: 1.2 TB
Payouts King Ransomware group has added a new unidentified victim (w**.com) to their dark web portal.
NB: The group intends to publish the data within 6-7 days.
🔍 Key Details:
🛡️Threat actor: Payouts King
📅 Reported on: 17/02/26
⚠ Data Compromised: 1.2 TB
February 17, 2026 at 6:22 AM
🚨 Ransomware Alert 🚨
Payouts King Ransomware group has added a new unidentified victim (w**.com) to their dark web portal.
NB: The group intends to publish the data within 6-7 days.
🔍 Key Details:
🛡️Threat actor: Payouts King
📅 Reported on: 17/02/26
⚠ Data Compromised: 1.2 TB
Payouts King Ransomware group has added a new unidentified victim (w**.com) to their dark web portal.
NB: The group intends to publish the data within 6-7 days.
🔍 Key Details:
🛡️Threat actor: Payouts King
📅 Reported on: 17/02/26
⚠ Data Compromised: 1.2 TB
🚨 Ransomware Alert 🚨
INC Ransom Ransomware group has added 2 new victims to their dark web portal.
- Far Bank Enterprises 🇺🇸
- Hiwassee Builders Supply Inc 🇺🇸
INC Ransom Ransomware group has added 2 new victims to their dark web portal.
- Far Bank Enterprises 🇺🇸
- Hiwassee Builders Supply Inc 🇺🇸
February 17, 2026 at 4:38 AM
🚨 Ransomware Alert 🚨
INC Ransom Ransomware group has added 2 new victims to their dark web portal.
- Far Bank Enterprises 🇺🇸
- Hiwassee Builders Supply Inc 🇺🇸
INC Ransom Ransomware group has added 2 new victims to their dark web portal.
- Far Bank Enterprises 🇺🇸
- Hiwassee Builders Supply Inc 🇺🇸
📢 Ransomware Alert: Nebraska Health Imaging 🇺🇸
Nebraska Health Imaging (nebraskahealthimaging.com), a US-based outpatient diagnostic imaging center providing MRI, CT, X-ray, and ultrasound services, has reportedly fallen victim to Nova Ransomware.
Nebraska Health Imaging (nebraskahealthimaging.com), a US-based outpatient diagnostic imaging center providing MRI, CT, X-ray, and ultrasound services, has reportedly fallen victim to Nova Ransomware.
February 17, 2026 at 3:12 AM
📢 Ransomware Alert: Nebraska Health Imaging 🇺🇸
Nebraska Health Imaging (nebraskahealthimaging.com), a US-based outpatient diagnostic imaging center providing MRI, CT, X-ray, and ultrasound services, has reportedly fallen victim to Nova Ransomware.
Nebraska Health Imaging (nebraskahealthimaging.com), a US-based outpatient diagnostic imaging center providing MRI, CT, X-ray, and ultrasound services, has reportedly fallen victim to Nova Ransomware.
📢 Ransomware Alert: Orain Technologies 🇪🇸
Orain Technologies (orain.io), a Spain-based IoT payment platform provider, has reportedly fallen victim to Kill Security Ransomware.
NB: The group intends to publish the data within 7-8 days.
Orain Technologies (orain.io), a Spain-based IoT payment platform provider, has reportedly fallen victim to Kill Security Ransomware.
NB: The group intends to publish the data within 7-8 days.
February 17, 2026 at 2:42 AM
📢 Ransomware Alert: Orain Technologies 🇪🇸
Orain Technologies (orain.io), a Spain-based IoT payment platform provider, has reportedly fallen victim to Kill Security Ransomware.
NB: The group intends to publish the data within 7-8 days.
Orain Technologies (orain.io), a Spain-based IoT payment platform provider, has reportedly fallen victim to Kill Security Ransomware.
NB: The group intends to publish the data within 7-8 days.
🚨 Ransomware Alert 🚨
Space Bears Ransomware group has added 2 new victims to their dark web portal.
* SITRAN MG 🇧🇷
* PT Darma Henwa Tbk. 🇮🇩
Space Bears Ransomware group has added 2 new victims to their dark web portal.
* SITRAN MG 🇧🇷
* PT Darma Henwa Tbk. 🇮🇩
February 16, 2026 at 8:52 PM
🚨 Ransomware Alert 🚨
Space Bears Ransomware group has added 2 new victims to their dark web portal.
* SITRAN MG 🇧🇷
* PT Darma Henwa Tbk. 🇮🇩
Space Bears Ransomware group has added 2 new victims to their dark web portal.
* SITRAN MG 🇧🇷
* PT Darma Henwa Tbk. 🇮🇩
🚨 DDoS Alert: 🇪🇸
SERVER KILLERS claims to have targeted multiple websites in Spain.
* La Moncloa
* Ministry of the Interior
* Ministry of Finance
* Ministry of Economy, Commerce and Business
* Ministry of Transport and Sustainable Mobility
* Ministry of Industry and Tourism
SERVER KILLERS claims to have targeted multiple websites in Spain.
* La Moncloa
* Ministry of the Interior
* Ministry of Finance
* Ministry of Economy, Commerce and Business
* Ministry of Transport and Sustainable Mobility
* Ministry of Industry and Tourism
February 16, 2026 at 7:54 PM
🚨 DDoS Alert: 🇪🇸
SERVER KILLERS claims to have targeted multiple websites in Spain.
* La Moncloa
* Ministry of the Interior
* Ministry of Finance
* Ministry of Economy, Commerce and Business
* Ministry of Transport and Sustainable Mobility
* Ministry of Industry and Tourism
SERVER KILLERS claims to have targeted multiple websites in Spain.
* La Moncloa
* Ministry of the Interior
* Ministry of Finance
* Ministry of Economy, Commerce and Business
* Ministry of Transport and Sustainable Mobility
* Ministry of Industry and Tourism