The system is currently monitoring the following ransomware and data leak sites:
Ransomware
- Akira
- Abyss
- AlphV / Black Cat
- Arcane
- AstroLocker
- AtomSilo
- Avaddon
- AvosLocker
- Babuk
- BianLian
- BlackBasta
- BlackByte
- BlackMatter
- BlogXX
- Cheers
- CL0P
- Colossus
- Conti
- CrossLock
- CryptNet
- CUBA
- DarkPower
- Darkrypt
- DarkSide
- Defray / RansomEXX
- DoppelPaymer
- Dunghill Leak / Dark Angels
- Entropy
- Everest
- Grief
- Groove
- Haron
- HiveLeaks
- Hotarus
- IceFire (not displayed in the dashboard due to unclear attribution)
- IndustrialSpy
- Izis
- Karma
- Lilith
- LockBit 2.0
- LockBit 3.0
- LockData
- Lorenz
- LV
- Makop
- Mallox
- Medusa
- MedusaLocker
- Midas
- Mindware
- MoneyMessage
- Monti
- Moses Staff
- MountLocker
- N3tworm
- Nefilim
- NightSky
- Nokoyawa
- Onyx
- Pandora
- Pay2Key
- payload.bin
- PLAY
- Prometheus
- PYSA
- Qilin
- Quantum
- RA Group
- RagnarLocker
- Ragnarok
- RansomHouse
- RanzyLeak
- REvil
- RedAlert
- Relic
- Rook
- Royal
- Sabbath / 54bb47h
- Sparta
- Spook
- Stormous
- SunCrypt
- Trigona
- UnSafe
- ViceSociety
- VisVendetta
- XingTeam
- Yanluowang
Data Leak Sites (DLS)
- Abrahams Ax
- Arvin Club
- Blacktor
- Bonaci
- CoomingProject
- DataLeak
- Donut Leaks
- Karakurt
- Marketo
- RobinHoodLeaks
- Snatch