SecLens 情报中心

网安资讯,一网打尽。汇集权威漏洞通告与行业要闻,结合分组浏览、智能过滤、RSS订阅 和 Webhook 推送,多通道拓展您的安全情报视野。

威胁情报

针对攻击活动、样本与IOC的持续情报更新。

  • SA2000.COM by stormous

    发布时间 2026-06-04 09:52 (UTC+08:00) 抓取时间 2026-06-04 10:00 (UTC+08:00)

    150 GB of data has been extracted, including: COMPTABILITÉ - FACTURES ACHAT / FACTURES À PAYER / FACTURES MODIFIÉES - Banking Informations SA2000 - PAIEMENTS CLIENTS - CLIENTS / PO CLIENTS - FOURNISSEUR / TRANSPORTEURS - EMPLOYÉS / EMBAUCHE - ACTIONNAIRES - COURRIEL / DOCUMENTS ***.There is still an opportunity to communicate and resolve this situation. We a

    扩展字段 
    {
  "activity": "Not Found",
  "attack_date": "2026-06-04T00:00:00+00:00",
  "country": "SA",
  "discovered_at": "2026-06-04T01:52:43.489610+00:00",
  "duplicate_count": 0,
  "group": "stormous",
  "permalink": "https://www.ransomware.live/id/U0EyMDAwLkNPTUBzdG9ybW91cw==",
  "post_url": null,
  "press": null,
  "screenshot": null,
  "website": "SA2000.COM"
}
    Ransomware.live 近期受害者 country:sa group:stormous source:ransomware-live type:ransomware-victim ransomware threat_intelligence

  • CUSTOMSIGN by incransom

    发布时间 2026-06-04 08:56 (UTC+08:00) 抓取时间 2026-06-04 09:00 (UTC+08:00)

    About Custom Sign & Engineering Custom Sign & Engineering, Inc. specializes in creating high-quality, custom commercial digital signs and billboards in Evansville, Indiana. The company offers a wide range of products, including LED dimensional letters, monumental signs, and information displays, all designed to meet the specific needs of businesses. The comp

    扩展字段 
    {
  "activity": "Business Services",
  "attack_date": "2026-06-03T23:59:00+00:00",
  "country": "US",
  "discovered_at": "2026-06-04T00:56:54.067634+00:00",
  "duplicate_count": 0,
  "group": "incransom",
  "permalink": "https://www.ransomware.live/id/Q1VTVE9NU0lHTkBpbmNyYW5zb20=",
  "post_url": "http://incblog6qu4y4mm4zvw5nrmue6qbwtgjsxpw6b7ixzssu36tsajldoad.onion/blog/disclosures/6a1ede26d152110a6aefc2ad",
  "press": null,
  "screenshot": "https://images.ransomware.live/victims/fe0d1985bd06839c92fe3e4d668b4185.png",
  "website": null
}
    Ransomware.live 近期受害者 activity:business-services country:us group:incransom has:leak-post has:screenshot source:ransomware-live type:ransomware-victim ransomware threat_intelligence

  • SeeWriteHear by cmdorganization

    发布时间 2026-06-04 04:50 (UTC+08:00) 抓取时间 2026-06-04 05:00 (UTC+08:00)

    SeeWriteHear specializes in providing print and digital accessibility solutions, including Braille, large print, and web accessibility services. Their offerings cater to various industries such as education, government, and publishing, ensuring compliance with usability standards. The company focuses on innovative technology to enhance accessibility for indi

    扩展字段 
    {
  "activity": "Technology",
  "attack_date": "2026-06-03T20:50:11.638231+00:00",
  "country": "GB",
  "discovered_at": "2026-06-03T20:50:13.391240+00:00",
  "duplicate_count": 0,
  "group": "cmdorganization",
  "permalink": "https://www.ransomware.live/id/U2VlV3JpdGVIZWFyQGNtZG9yZ2FuaXphdGlvbg==",
  "post_url": null,
  "press": null,
  "screenshot": null,
  "website": "www.seewritehear.com"
}
    Ransomware.live 近期受害者 activity:technology country:gb group:cmdorganization source:ransomware-live type:ransomware-victim ransomware threat_intelligence

  • PB White & Co by genesis

    发布时间 2026-06-04 04:27 (UTC+08:00) 抓取时间 2026-06-04 04:41 (UTC+08:00)

    A provider of financial services

    扩展字段 
    {
  "activity": "Business Services",
  "attack_date": "2026-06-03T00:00:00+00:00",
  "country": null,
  "discovered_at": "2026-06-03T20:27:54.099092+00:00",
  "duplicate_count": 0,
  "group": "genesis",
  "infostealer": {
    "employees": 0,
    "employees_url": 0,
    "infostealer_stats": {
      "Atomic": 1,
      "DarkCrystal": 1,
      "Generic Stealer": 54,
      "Lumma": 126,
      "Raccoon": 1,
      "RedLine": 25,
      "StealC": 32,
      "Vidar": 8
    },
    "last_employee_compromised": "1970-01-01T00:00:00+00:00",
    "last_user_compromised": "2026-05-24T12:06:07+00:00",
    "thirdparties": 188,
    "update": "2026-05-29T11:29:38.916128",
    "users": 394,
    "users_url": 3
  },
  "permalink": "https://www.ransomware.live/id/UEIgV2hpdGUgJiBDb0BnZW5lc2lz",
  "post_url": "http://genesis6ixpb5mcy4kudybtw5op2wqlrkocfogbnenz3c647ibqixiad.onion/940ee385cc48cd398032/",
  "press": null,
  "screenshot": "https://images.ransomware.live/victims/ad6fc0fb9720725845600d6f2dab1648.png",
  "website": "."
}
    Ransomware.live 近期受害者 activity:business-services group:genesis has:infostealer has:leak-post has:screenshot source:ransomware-live type:ransomware-victim ransomware threat_intelligence

  • Family Medical Associates of Raleigh by genesis

    发布时间 2026-06-04 04:25 (UTC+08:00) 抓取时间 2026-06-04 04:41 (UTC+08:00)

    A healthcare organization

    扩展字段 
    {
  "activity": "Healthcare",
  "attack_date": "2026-06-03T00:00:00+00:00",
  "country": "US",
  "discovered_at": "2026-06-03T20:25:36.310567+00:00",
  "duplicate_count": 0,
  "group": "genesis",
  "infostealer": {
    "employees": 0,
    "employees_url": 0,
    "infostealer_stats": {
      "Atomic": 1,
      "DarkCrystal": 1,
      "Generic Stealer": 54,
      "Lumma": 126,
      "Raccoon": 1,
      "RedLine": 25,
      "StealC": 32,
      "Vidar": 8
    },
    "last_employee_compromised": "1970-01-01T00:00:00+00:00",
    "last_user_compromised": "2026-05-24T12:06:07+00:00",
    "thirdparties": 188,
    "update": "2026-05-29T11:29:38.916128",
    "users": 394,
    "users_url": 3
  },
  "permalink": "https://www.ransomware.live/id/RmFtaWx5IE1lZGljYWwgQXNzb2NpYXRlcyBvZiBSYWxlaWdoQGdlbmVzaXM=",
  "post_url": "http://genesis6ixpb5mcy4kudybtw5op2wqlrkocfogbnenz3c647ibqixiad.onion/56a7b33d42a266827a91/",
  "press": null,
  "screenshot": "https://images.ransomware.live/victims/fc566ae5bea43b3d2d2ba98197214108.png",
  "website": "."
}
    Ransomware.live 近期受害者 activity:healthcare country:us group:genesis has:infostealer has:leak-post has:screenshot source:ransomware-live type:ransomware-victim ransomware threat_intelligence

  • Singing River Health System by anubis

    发布时间 2026-06-04 04:20 (UTC+08:00) 抓取时间 2026-06-04 04:41 (UTC+08:00)

    New data breach at a large health system provider.

    扩展字段 
    {
  "activity": "Healthcare",
  "attack_date": "2026-06-03T20:20:21.879733+00:00",
  "country": "US",
  "discovered_at": "2026-06-03T20:20:52.869184+00:00",
  "duplicate_count": 0,
  "group": "anubis",
  "permalink": "https://www.ransomware.live/id/U2luZ2luZyBSaXZlciBIZWFsdGggU3lzdGVtQGFudWJpcw==",
  "post_url": "http://om6q4a6cyipxvt7ioudxt24cw4oqu4yodmqzl25mqd2hgllymrgu4aqd.onion/r/TEs2kjYuJa1ZRwDySKBUBXRSCY+ZQDDD7Zl6HGiYRvyEkhHLEctJz0tubRr1SuHFE0xJ6HS1vQqnh8M7w873jI4Vm50UEQx",
  "press": null,
  "screenshot": "https://images.ransomware.live/victims/e469bf3c9fa2321908ab4c5ee33fe86c.png",
  "website": null
}
    Ransomware.live 近期受害者 activity:healthcare country:us group:anubis has:leak-post has:screenshot source:ransomware-live type:ransomware-victim ransomware threat_intelligence

  • Copamex by dragonforce

    发布时间 2026-06-04 01:53 (UTC+08:00) 抓取时间 2026-06-04 02:00 (UTC+08:00)

    Copamex, headquartered in Monterrey, Mexico, and established in 1928, is a paper manufacturing company offering writing and printing, special, corrugated, and kraft paper solutions.

    扩展字段 
    {
  "activity": "Agriculture and Food Production",
  "attack_date": "2026-06-03T17:30:29.470565+00:00",
  "country": "MX",
  "discovered_at": "2026-06-03T17:53:14.042182+00:00",
  "duplicate_count": 0,
  "group": "dragonforce",
  "infostealer": {
    "employees": 0,
    "employees_url": 0,
    "infostealer_stats": {},
    "last_employee_compromised": null,
    "last_user_compromised": null,
    "thirdparties": 15,
    "update": "2026-06-03T17:52:34",
    "users": 0,
    "users_url": 0
  },
  "permalink": "https://www.ransomware.live/id/Q29wYW1leEBkcmFnb25mb3JjZQ==",
  "post_url": "http://z3wqggtxft7id3ibr7srivv5gjof5fwg76slewnzwwakjuf3nlhukdid.onion/blog/?post_uuid=7bc6a138-2d17-464b-bb0e-a332c9869097",
  "press": null,
  "screenshot": "https://images.ransomware.live/victims/f2fed6e5043254081ce8d9549a9f88d8.png",
  "website": "copamex.com"
}
    Ransomware.live 近期受害者 activity:agriculture-and-food-production country:mx group:dragonforce has:infostealer has:leak-post has:screenshot source:ransomware-live type:ransomware-victim ransomware threat_intelligence

  • SETS Solutions by dragonforce

    发布时间 2026-06-04 01:52 (UTC+08:00) 抓取时间 2026-06-04 02:00 (UTC+08:00)

    SETS Solutions is a prominent information technology company based in Lebanon, serving the Middle East since 1990. The company specializes in a diverse range of technology solutions, including its flagship Human Resources Management System, People365, which encompasses Time Attendance, Payroll, and HR modules. Additionally, SETS offers services in data cente

    扩展字段 
    {
  "activity": "Business Services",
  "attack_date": "2026-06-03T17:32:14.290738+00:00",
  "country": "LB",
  "discovered_at": "2026-06-03T17:52:32.542876+00:00",
  "duplicate_count": 0,
  "group": "dragonforce",
  "infostealer": {
    "employees": 3,
    "employees_url": 5,
    "infostealer_stats": {},
    "last_employee_compromised": null,
    "last_user_compromised": null,
    "thirdparties": 2,
    "update": "2026-06-03T17:51:53",
    "users": 0,
    "users_url": 4
  },
  "permalink": "https://www.ransomware.live/id/U0VUUyBTb2x1dGlvbnNAZHJhZ29uZm9yY2U=",
  "post_url": "http://z3wqggtxft7id3ibr7srivv5gjof5fwg76slewnzwwakjuf3nlhukdid.onion/blog/?post_uuid=45d4b57a-01ee-487c-b7a2-16a93c09723d",
  "press": null,
  "screenshot": "https://images.ransomware.live/victims/0d7a9d6161a750b66dab905e5bf1f03c.png",
  "website": "sets.com.lb"
}
    Ransomware.live 近期受害者 activity:business-services country:lb group:dragonforce has:infostealer has:leak-post has:screenshot source:ransomware-live type:ransomware-victim ransomware threat_intelligence