Board

Ransomware Tracker

A reader-facing board for major ransomware brands, extortion crews, their status, and the operations they are known for.

LockBit

Ransomware-as-a-Service
Active
Primary Targets: Enterprise, healthcare, manufacturing
Note: Most active ransomware group 2022-2024

BlackCat/ALPHV

Ransomware-as-a-Service
Active
Primary Targets: Critical infrastructure, retail
Note: First major Rust ransomware; FBI disrupted 2023

Cl0p

Extortion
Active
Primary Targets: Managed file transfer software
Note: Known for MOVEit and GoAnywhere campaigns

Play

Ransomware
Active
Primary Targets: Latin America, Europe
Note: Emerging threat, healthcare focus

Akira

Ransomware
Active
Primary Targets: SMEs, professional services
Note: Rapid growth in 2024

Medusa

Ransomware
Active
Primary Targets: Global organizations
Note: Data leak site, double extortion

REvil

Ransomware-as-a-Service
Disrupted
Primary Targets: Enterprise, MSPs
Note: Kaseya attack; leaders arrested

Conti

Ransomware
Dissolved
Primary Targets: Healthcare, critical infrastructure
Note: Leaked by member, shut down 2022
← Back to Home