Arsenal Exploits TTP Matrix KillChain Mapa Actores SSLBL RansomLook Ransomwhere Alertas CyberNews

osiris

1 incidentes 1 paises 1 sectores ransomware RU Ultimo: 2026-01-09

Osiris is a ransomware operation that emerged in 2024, following the international law enforcement disruption of LockBit's infrastructure during Operation Cronos. It operates as a rebranded continuation of the LockBit Black (LockBit 3.0) ransomware, retaining the same codebase, ransom note structure, and established operational tactics. The group employs a Ransomware-as-a-Service (RaaS) model and is primarily motivated by financial gain through double extortion, which involves exfiltrating sensitive data prior to encryption and subsequently threatening public disclosure via leak sites. This group is distinguished by its direct lineage from LockBit Black, demonstrating a resilient continuation of established operations despite significant law enforcement action.

Malware asociado

Mimikatz

Tecnicas MITRE

T1003, T1566, T1021.002, T1059, T1486

RansomLook pivots

Data, inteligencia y referencias externas para contrastar actividad ransomware del actor.

Abrir perfil →

Data

Recent Browse Trending Stats

Intel

Group URLs Crypto Leaks Notes Analyses Torrents

Info

API Glossary About

Victimas

TTPs unicas

Info robada historica

N/D

Rescates reclamados

N/D

Pagos detectados

N/D

Paises afectados

United States (1)

Paises objetivo (SOCRadar)

China

Germany

France

United Kingdom

India

Philippines

Singapore

Thailand

United States

Sectores atacados

Manufacturing (1)

Sectores objetivo (SOCRadar)

Construction of BuildingsFood ManufacturingSoftware PublishersReal EstateEnterprises & HoldingAccommodationManufacturingConstructionPublic AdministrationEducational Services

Victimas (1)

American Vanguard9 Jan 2026

Ransomware

United States Manufacturing

Resumen El 9 de enero de 2026 se reportó un ataque cibernético a la empresa American Vanguard, una compañía estadounidense especializada en productos …