FalconFeeds.io
@falconfeedsio.bsky.social
Democratizing Cyber Security. Threat intelligence platform for Cyber Security professionals and Small / Medium business. Insights from Darkweb and Threat Actors.
📢 Ransomware Alert: 🇺🇸
Concord Academy (concord-academy.org), a U.S.-based independent school, has reportedly fallen victim to MEDUSA Ransomware.
NB: The group intends to publish the data within 29 days.
🔍 Key Details:
🛡 Threat Actor: MEDUSA
📅 Reported on: 29/11/2025
Concord Academy (concord-academy.org), a U.S.-based independent school, has reportedly fallen victim to MEDUSA Ransomware.
NB: The group intends to publish the data within 29 days.
🔍 Key Details:
🛡 Threat Actor: MEDUSA
📅 Reported on: 29/11/2025
November 29, 2025 at 2:42 AM
📢 Ransomware Alert: 🇺🇸
Concord Academy (concord-academy.org), a U.S.-based independent school, has reportedly fallen victim to MEDUSA Ransomware.
NB: The group intends to publish the data within 29 days.
🔍 Key Details:
🛡 Threat Actor: MEDUSA
📅 Reported on: 29/11/2025
Concord Academy (concord-academy.org), a U.S.-based independent school, has reportedly fallen victim to MEDUSA Ransomware.
NB: The group intends to publish the data within 29 days.
🔍 Key Details:
🛡 Threat Actor: MEDUSA
📅 Reported on: 29/11/2025
📢 Ransomware Alert: 🇹🇼
Everbiz Industrial Co., Ltd. (everbiz.com.tw), a Taiwan‑based manufacturer of wire harnesses and cable assemblies, has reportedly fallen victim to The Gentlemen Ransomware
NB: The group intends to publish the data within 10 days
🔍 Key Details:
🛡Threat Actor: The Gentlemen
Everbiz Industrial Co., Ltd. (everbiz.com.tw), a Taiwan‑based manufacturer of wire harnesses and cable assemblies, has reportedly fallen victim to The Gentlemen Ransomware
NB: The group intends to publish the data within 10 days
🔍 Key Details:
🛡Threat Actor: The Gentlemen
November 29, 2025 at 1:35 AM
📢 Ransomware Alert: 🇹🇼
Everbiz Industrial Co., Ltd. (everbiz.com.tw), a Taiwan‑based manufacturer of wire harnesses and cable assemblies, has reportedly fallen victim to The Gentlemen Ransomware
NB: The group intends to publish the data within 10 days
🔍 Key Details:
🛡Threat Actor: The Gentlemen
Everbiz Industrial Co., Ltd. (everbiz.com.tw), a Taiwan‑based manufacturer of wire harnesses and cable assemblies, has reportedly fallen victim to The Gentlemen Ransomware
NB: The group intends to publish the data within 10 days
🔍 Key Details:
🛡Threat Actor: The Gentlemen
📢 Ransomware Alert: 🇺🇸
Valley View Independent School District (vviewisd.net), a U.S.-based public school district, has reportedly fallen victim to INC RANSOM Ransomware
NB: The group intends to publish the data within 14 days
Valley View Independent School District (vviewisd.net), a U.S.-based public school district, has reportedly fallen victim to INC RANSOM Ransomware
NB: The group intends to publish the data within 14 days
November 29, 2025 at 12:01 AM
📢 Ransomware Alert: 🇺🇸
Valley View Independent School District (vviewisd.net), a U.S.-based public school district, has reportedly fallen victim to INC RANSOM Ransomware
NB: The group intends to publish the data within 14 days
Valley View Independent School District (vviewisd.net), a U.S.-based public school district, has reportedly fallen victim to INC RANSOM Ransomware
NB: The group intends to publish the data within 14 days
📢 Ransomware Alert :
Qilin ransomware group has added 4 unknown victims to their dark web portal.
* Williamson County 🇺🇸
* Kleber & Associates 🇺🇸
* Weiss & Company LLP 🇺🇸
* Zoya🇺🇸
Qilin ransomware group has added 4 unknown victims to their dark web portal.
* Williamson County 🇺🇸
* Kleber & Associates 🇺🇸
* Weiss & Company LLP 🇺🇸
* Zoya🇺🇸
November 28, 2025 at 7:21 PM
📢 Ransomware Alert :
Qilin ransomware group has added 4 unknown victims to their dark web portal.
* Williamson County 🇺🇸
* Kleber & Associates 🇺🇸
* Weiss & Company LLP 🇺🇸
* Zoya🇺🇸
Qilin ransomware group has added 4 unknown victims to their dark web portal.
* Williamson County 🇺🇸
* Kleber & Associates 🇺🇸
* Weiss & Company LLP 🇺🇸
* Zoya🇺🇸
📢 Ransomware Alert: 🇺🇸
Panini Kabob Grill (PKG) (paninikabobgrill.com), a Restaurants company based in USA, has reportedly fallen victim to Akira Ransomware group.
🔍 Key Details:
🛡 Threat Actor: Akira
📅 Reported on: November 28, 2025
⚠ Compromised Data: 60 GB
Panini Kabob Grill (PKG) (paninikabobgrill.com), a Restaurants company based in USA, has reportedly fallen victim to Akira Ransomware group.
🔍 Key Details:
🛡 Threat Actor: Akira
📅 Reported on: November 28, 2025
⚠ Compromised Data: 60 GB
November 28, 2025 at 3:36 PM
📢 Ransomware Alert: 🇺🇸
Panini Kabob Grill (PKG) (paninikabobgrill.com), a Restaurants company based in USA, has reportedly fallen victim to Akira Ransomware group.
🔍 Key Details:
🛡 Threat Actor: Akira
📅 Reported on: November 28, 2025
⚠ Compromised Data: 60 GB
Panini Kabob Grill (PKG) (paninikabobgrill.com), a Restaurants company based in USA, has reportedly fallen victim to Akira Ransomware group.
🔍 Key Details:
🛡 Threat Actor: Akira
📅 Reported on: November 28, 2025
⚠ Compromised Data: 60 GB
📢 Ransomware Alert : 🇺🇸
Akira ransomware group has added two new victims to their dark web portal.
- Casting House, Inc.
- Parrish Tire Company
Akira ransomware group has added two new victims to their dark web portal.
- Casting House, Inc.
- Parrish Tire Company
November 28, 2025 at 2:48 PM
📢 Ransomware Alert : 🇺🇸
Akira ransomware group has added two new victims to their dark web portal.
- Casting House, Inc.
- Parrish Tire Company
Akira ransomware group has added two new victims to their dark web portal.
- Casting House, Inc.
- Parrish Tire Company
🚨 DDoS Alert: 🇪🇸
QuietSec claims to have targeted multiple websites in Spain:
- City of Zaragoza
- Alicante City Council
- Getafe City Council
QuietSec claims to have targeted multiple websites in Spain:
- City of Zaragoza
- Alicante City Council
- Getafe City Council
November 28, 2025 at 2:27 PM
🚨 DDoS Alert: 🇪🇸
QuietSec claims to have targeted multiple websites in Spain:
- City of Zaragoza
- Alicante City Council
- Getafe City Council
QuietSec claims to have targeted multiple websites in Spain:
- City of Zaragoza
- Alicante City Council
- Getafe City Council
📢 Ransomware Alert :
Akira ransomware group has added multiple new victims to their dark web portal.
- Morton LTC 🇺🇸
- Reed Pope Law Corporation 🇨🇦
- American Public Television 🇺🇸
- Benchmark Connector Corporation 🇺🇸
- Radtke Contractors 🇺🇸
Akira ransomware group has added multiple new victims to their dark web portal.
- Morton LTC 🇺🇸
- Reed Pope Law Corporation 🇨🇦
- American Public Television 🇺🇸
- Benchmark Connector Corporation 🇺🇸
- Radtke Contractors 🇺🇸
November 28, 2025 at 2:12 PM
📢 Ransomware Alert :
Akira ransomware group has added multiple new victims to their dark web portal.
- Morton LTC 🇺🇸
- Reed Pope Law Corporation 🇨🇦
- American Public Television 🇺🇸
- Benchmark Connector Corporation 🇺🇸
- Radtke Contractors 🇺🇸
Akira ransomware group has added multiple new victims to their dark web portal.
- Morton LTC 🇺🇸
- Reed Pope Law Corporation 🇨🇦
- American Public Television 🇺🇸
- Benchmark Connector Corporation 🇺🇸
- Radtke Contractors 🇺🇸
📢 Ransomware Alert: 🇺🇸
Devereux (devereux.org), a US-based Mental Health Care Firm, has reportedly fallen victim to The Gentlemen Ransomware group.
NB: The group intends to publish the data within 9-10 days.
🔍 Key Details:
🛡 Threat Actor: The Gentlemen
📅 Reported on: November 28, 2025
Devereux (devereux.org), a US-based Mental Health Care Firm, has reportedly fallen victim to The Gentlemen Ransomware group.
NB: The group intends to publish the data within 9-10 days.
🔍 Key Details:
🛡 Threat Actor: The Gentlemen
📅 Reported on: November 28, 2025
November 28, 2025 at 2:12 PM
📢 Ransomware Alert: 🇺🇸
Devereux (devereux.org), a US-based Mental Health Care Firm, has reportedly fallen victim to The Gentlemen Ransomware group.
NB: The group intends to publish the data within 9-10 days.
🔍 Key Details:
🛡 Threat Actor: The Gentlemen
📅 Reported on: November 28, 2025
Devereux (devereux.org), a US-based Mental Health Care Firm, has reportedly fallen victim to The Gentlemen Ransomware group.
NB: The group intends to publish the data within 9-10 days.
🔍 Key Details:
🛡 Threat Actor: The Gentlemen
📅 Reported on: November 28, 2025
📢 Ransomware Alert: 🇺🇸
Mid-South Pulmonary & Sleep Specialists P.C. (mspulmonary.com), a US-based Medical Practice Firm, has reportedly fallen victim to ANUBIS Ransomware group.
NB: The group intends to publish the data within 1 day.
Mid-South Pulmonary & Sleep Specialists P.C. (mspulmonary.com), a US-based Medical Practice Firm, has reportedly fallen victim to ANUBIS Ransomware group.
NB: The group intends to publish the data within 1 day.
November 28, 2025 at 1:45 PM
📢 Ransomware Alert: 🇺🇸
Mid-South Pulmonary & Sleep Specialists P.C. (mspulmonary.com), a US-based Medical Practice Firm, has reportedly fallen victim to ANUBIS Ransomware group.
NB: The group intends to publish the data within 1 day.
Mid-South Pulmonary & Sleep Specialists P.C. (mspulmonary.com), a US-based Medical Practice Firm, has reportedly fallen victim to ANUBIS Ransomware group.
NB: The group intends to publish the data within 1 day.
📢 Ransomware Alert : 🇺🇸
Akira ransomware group has added multiple new victims to their dark web portal.
- Gershow Recycling
- Design Team Sign Company
- K2D - Consulting Engineers
- Lone Rock Timber
Akira ransomware group has added multiple new victims to their dark web portal.
- Gershow Recycling
- Design Team Sign Company
- K2D - Consulting Engineers
- Lone Rock Timber
November 28, 2025 at 1:36 PM
📢 Ransomware Alert : 🇺🇸
Akira ransomware group has added multiple new victims to their dark web portal.
- Gershow Recycling
- Design Team Sign Company
- K2D - Consulting Engineers
- Lone Rock Timber
Akira ransomware group has added multiple new victims to their dark web portal.
- Gershow Recycling
- Design Team Sign Company
- K2D - Consulting Engineers
- Lone Rock Timber
🚨 DDoS Alert: 🇺🇦
NoName claims to have targeted two websites in Ukraine:
- UARNet
- Freenet
NoName claims to have targeted two websites in Ukraine:
- UARNet
- Freenet
November 28, 2025 at 11:36 AM
🚨 DDoS Alert: 🇺🇦
NoName claims to have targeted two websites in Ukraine:
- UARNet
- Freenet
NoName claims to have targeted two websites in Ukraine:
- UARNet
- Freenet
🚨 DDoS Alert 🇮🇱
RipperSec claims to have targeted the website of World Machal.
NB : The site is up and active now.
RipperSec claims to have targeted the website of World Machal.
NB : The site is up and active now.
November 28, 2025 at 10:41 AM
🚨 DDoS Alert 🇮🇱
RipperSec claims to have targeted the website of World Machal.
NB : The site is up and active now.
RipperSec claims to have targeted the website of World Machal.
NB : The site is up and active now.
🚨 DDoS Alert: 🇫🇮
Dark Storm Team claims to have targeted the website of Bank of Finland (suomenpankki.fi)
NB: The site is up and active at the moment.
Dark Storm Team claims to have targeted the website of Bank of Finland (suomenpankki.fi)
NB: The site is up and active at the moment.
November 28, 2025 at 9:50 AM
🚨 DDoS Alert: 🇫🇮
Dark Storm Team claims to have targeted the website of Bank of Finland (suomenpankki.fi)
NB: The site is up and active at the moment.
Dark Storm Team claims to have targeted the website of Bank of Finland (suomenpankki.fi)
NB: The site is up and active at the moment.
🚨 DDoS Alert 🚨
NoName claims to have targeted multiple websites in Spain.
- Canal de Isabel II
- Ports of Las Palmas
- Autoridad Portuaria de Cartagena
- S2GRUPO
- CACESA
NoName claims to have targeted multiple websites in Spain.
- Canal de Isabel II
- Ports of Las Palmas
- Autoridad Portuaria de Cartagena
- S2GRUPO
- CACESA
November 28, 2025 at 7:57 AM
🚨 DDoS Alert 🚨
NoName claims to have targeted multiple websites in Spain.
- Canal de Isabel II
- Ports of Las Palmas
- Autoridad Portuaria de Cartagena
- S2GRUPO
- CACESA
NoName claims to have targeted multiple websites in Spain.
- Canal de Isabel II
- Ports of Las Palmas
- Autoridad Portuaria de Cartagena
- S2GRUPO
- CACESA
🚨 Data Breach Alert: BNY 🇺🇸
A threat actor claims to be selling a database allegedly containing 770,000 investor records from BNY Mellon Securities Services (bny.com), a global financial institution offering investment management and securities services.
A threat actor claims to be selling a database allegedly containing 770,000 investor records from BNY Mellon Securities Services (bny.com), a global financial institution offering investment management and securities services.
November 28, 2025 at 6:38 AM
🚨 Data Breach Alert: BNY 🇺🇸
A threat actor claims to be selling a database allegedly containing 770,000 investor records from BNY Mellon Securities Services (bny.com), a global financial institution offering investment management and securities services.
A threat actor claims to be selling a database allegedly containing 770,000 investor records from BNY Mellon Securities Services (bny.com), a global financial institution offering investment management and securities services.
📢 Ransomware Alert: 🇱🇺
Rollingertec S.A., a construction company, based in Luxembourg, has reportedly fallen victim to TENGU ransomware.
🔍 Key Details:
🛡 Threat Actor: TENGU
📅 Reported on: November 27, 2025
⚠ Compromised Data: 202 GB
Rollingertec S.A., a construction company, based in Luxembourg, has reportedly fallen victim to TENGU ransomware.
🔍 Key Details:
🛡 Threat Actor: TENGU
📅 Reported on: November 27, 2025
⚠ Compromised Data: 202 GB
November 27, 2025 at 9:56 PM
📢 Ransomware Alert: 🇱🇺
Rollingertec S.A., a construction company, based in Luxembourg, has reportedly fallen victim to TENGU ransomware.
🔍 Key Details:
🛡 Threat Actor: TENGU
📅 Reported on: November 27, 2025
⚠ Compromised Data: 202 GB
Rollingertec S.A., a construction company, based in Luxembourg, has reportedly fallen victim to TENGU ransomware.
🔍 Key Details:
🛡 Threat Actor: TENGU
📅 Reported on: November 27, 2025
⚠ Compromised Data: 202 GB
📢 Ransomware Alert: 🇰🇷
Caros co (caros.kr), a manufacturer of household appliances, based in South Korea, has reportedly fallen victim to Nova ransomware.
🔍 Key Details:
🛡 Threat Actor: Nova
📅 Reported on: November 27, 2025
Caros co (caros.kr), a manufacturer of household appliances, based in South Korea, has reportedly fallen victim to Nova ransomware.
🔍 Key Details:
🛡 Threat Actor: Nova
📅 Reported on: November 27, 2025
November 27, 2025 at 9:53 PM
📢 Ransomware Alert: 🇰🇷
Caros co (caros.kr), a manufacturer of household appliances, based in South Korea, has reportedly fallen victim to Nova ransomware.
🔍 Key Details:
🛡 Threat Actor: Nova
📅 Reported on: November 27, 2025
Caros co (caros.kr), a manufacturer of household appliances, based in South Korea, has reportedly fallen victim to Nova ransomware.
🔍 Key Details:
🛡 Threat Actor: Nova
📅 Reported on: November 27, 2025
📢 Ransomware Alert: 🇺🇸
Mechanical Systems Company (msystemscompany.com), a construction company based in USA, has fallen victim to Akira ransomware.
🔍 Key Details:
🛡 Threat Actor: Akira
📅 Reported on: November 27, 2025
⚠ Compromised Data: 30 GB
Mechanical Systems Company (msystemscompany.com), a construction company based in USA, has fallen victim to Akira ransomware.
🔍 Key Details:
🛡 Threat Actor: Akira
📅 Reported on: November 27, 2025
⚠ Compromised Data: 30 GB
November 27, 2025 at 9:36 PM
📢 Ransomware Alert: 🇺🇸
Mechanical Systems Company (msystemscompany.com), a construction company based in USA, has fallen victim to Akira ransomware.
🔍 Key Details:
🛡 Threat Actor: Akira
📅 Reported on: November 27, 2025
⚠ Compromised Data: 30 GB
Mechanical Systems Company (msystemscompany.com), a construction company based in USA, has fallen victim to Akira ransomware.
🔍 Key Details:
🛡 Threat Actor: Akira
📅 Reported on: November 27, 2025
⚠ Compromised Data: 30 GB
📢 Ransomware Alert :
Qilin ransomware group has added 3 unknown victims to their dark web portal.
* United Volleyball Supply, LLC. 🇺🇸
* Baltimore City Fire & Police Employees' Retirement System 🇺🇸
* ERR AG 🇨🇭
Qilin ransomware group has added 3 unknown victims to their dark web portal.
* United Volleyball Supply, LLC. 🇺🇸
* Baltimore City Fire & Police Employees' Retirement System 🇺🇸
* ERR AG 🇨🇭
November 27, 2025 at 9:34 PM
📢 Ransomware Alert :
Qilin ransomware group has added 3 unknown victims to their dark web portal.
* United Volleyball Supply, LLC. 🇺🇸
* Baltimore City Fire & Police Employees' Retirement System 🇺🇸
* ERR AG 🇨🇭
Qilin ransomware group has added 3 unknown victims to their dark web portal.
* United Volleyball Supply, LLC. 🇺🇸
* Baltimore City Fire & Police Employees' Retirement System 🇺🇸
* ERR AG 🇨🇭
📢 Ransomware Alert: 🇬🇧
Comansco (comansco.com), a UK-based company specializing in supplying parts and materials for container terminals, has reportedly fallen victim to the Qilin ransomware group.
🔍 Key Details:
🛡 Threat Actor: Qilin
📅 Reported on: November 27, 2025
Comansco (comansco.com), a UK-based company specializing in supplying parts and materials for container terminals, has reportedly fallen victim to the Qilin ransomware group.
🔍 Key Details:
🛡 Threat Actor: Qilin
📅 Reported on: November 27, 2025
November 27, 2025 at 9:33 PM
📢 Ransomware Alert: 🇬🇧
Comansco (comansco.com), a UK-based company specializing in supplying parts and materials for container terminals, has reportedly fallen victim to the Qilin ransomware group.
🔍 Key Details:
🛡 Threat Actor: Qilin
📅 Reported on: November 27, 2025
Comansco (comansco.com), a UK-based company specializing in supplying parts and materials for container terminals, has reportedly fallen victim to the Qilin ransomware group.
🔍 Key Details:
🛡 Threat Actor: Qilin
📅 Reported on: November 27, 2025
📢 Ransomware Alert :
Akira ransomware has added 9 new victims to their dark web portal.
- Country Club Enterprises
- ASL Consulting
- DTG Consulting Solutions
- SBLM Architects🇺🇸
- Crucible Industries
- Hitech Grand Prix Limited
- Snyder Cohn
- Dealer Information Systems
- Kelly Wearstler
Akira ransomware has added 9 new victims to their dark web portal.
- Country Club Enterprises
- ASL Consulting
- DTG Consulting Solutions
- SBLM Architects🇺🇸
- Crucible Industries
- Hitech Grand Prix Limited
- Snyder Cohn
- Dealer Information Systems
- Kelly Wearstler
November 27, 2025 at 3:03 PM
📢 Ransomware Alert :
Akira ransomware has added 9 new victims to their dark web portal.
- Country Club Enterprises
- ASL Consulting
- DTG Consulting Solutions
- SBLM Architects🇺🇸
- Crucible Industries
- Hitech Grand Prix Limited
- Snyder Cohn
- Dealer Information Systems
- Kelly Wearstler
Akira ransomware has added 9 new victims to their dark web portal.
- Country Club Enterprises
- ASL Consulting
- DTG Consulting Solutions
- SBLM Architects🇺🇸
- Crucible Industries
- Hitech Grand Prix Limited
- Snyder Cohn
- Dealer Information Systems
- Kelly Wearstler
📢 Ransomware Alert: 🇨🇦
Produits Forestiers Munger Inc. (pfmi.ca), a Canada-based Machinery manufacturing company, has reportedly fallen victim to the INC Ransom ransomware.
🔍 Key Details:
🛡 Threat Actor: INC Ransom
📅 Reported on: November 27, 2025
Produits Forestiers Munger Inc. (pfmi.ca), a Canada-based Machinery manufacturing company, has reportedly fallen victim to the INC Ransom ransomware.
🔍 Key Details:
🛡 Threat Actor: INC Ransom
📅 Reported on: November 27, 2025
November 27, 2025 at 2:52 PM
📢 Ransomware Alert: 🇨🇦
Produits Forestiers Munger Inc. (pfmi.ca), a Canada-based Machinery manufacturing company, has reportedly fallen victim to the INC Ransom ransomware.
🔍 Key Details:
🛡 Threat Actor: INC Ransom
📅 Reported on: November 27, 2025
Produits Forestiers Munger Inc. (pfmi.ca), a Canada-based Machinery manufacturing company, has reportedly fallen victim to the INC Ransom ransomware.
🔍 Key Details:
🛡 Threat Actor: INC Ransom
📅 Reported on: November 27, 2025
🚨 DDoS Alert: 🇺🇦
NoName claims to have targeted multiple websites in Ukraine:
- Dnipropetrovsk Regional State Administration
- Zaporizhzhia City Council
- Vinnytsia City Council
- Sumy City Council
NoName claims to have targeted multiple websites in Ukraine:
- Dnipropetrovsk Regional State Administration
- Zaporizhzhia City Council
- Vinnytsia City Council
- Sumy City Council
November 27, 2025 at 2:06 PM
🚨 DDoS Alert: 🇺🇦
NoName claims to have targeted multiple websites in Ukraine:
- Dnipropetrovsk Regional State Administration
- Zaporizhzhia City Council
- Vinnytsia City Council
- Sumy City Council
NoName claims to have targeted multiple websites in Ukraine:
- Dnipropetrovsk Regional State Administration
- Zaporizhzhia City Council
- Vinnytsia City Council
- Sumy City Council
🚨 DDoS Alert: 🇮🇱
Black Ember claims to have targeted multiple websites in Israel.
- Chery Israel
- Israel Handball Association
- Junior League
- iCount
Black Ember claims to have targeted multiple websites in Israel.
- Chery Israel
- Israel Handball Association
- Junior League
- iCount
November 27, 2025 at 1:24 PM
🚨 DDoS Alert: 🇮🇱
Black Ember claims to have targeted multiple websites in Israel.
- Chery Israel
- Israel Handball Association
- Junior League
- iCount
Black Ember claims to have targeted multiple websites in Israel.
- Chery Israel
- Israel Handball Association
- Junior League
- iCount