惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

GbyAI
GbyAI
N
News and Events Feed by Topic
D
DataBreaches.Net
MongoDB | Blog
MongoDB | Blog
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
Engineering at Meta
Engineering at Meta
T
Tailwind CSS Blog
博客园_首页
Microsoft Azure Blog
Microsoft Azure Blog
Y
Y Combinator Blog
博客园 - Franky
Hugging Face - Blog
Hugging Face - Blog
月光博客
月光博客
A
About on SuperTechFans
I
InfoQ
S
Securelist
Last Week in AI
Last Week in AI
S
Schneier on Security
C
CXSECURITY Database RSS Feed - CXSecurity.com
Hacker News: Ask HN
Hacker News: Ask HN
Schneier on Security
Schneier on Security
Know Your Adversary
Know Your Adversary
腾讯CDC
大猫的无限游戏
大猫的无限游戏
S
Security @ Cisco Blogs
博客园 - 三生石上(FineUI控件)
Simon Willison's Weblog
Simon Willison's Weblog
D
Darknet – Hacking Tools, Hacker News & Cyber Security
T
Tor Project blog
美团技术团队
aimingoo的专栏
aimingoo的专栏
G
Google Developers Blog
罗磊的独立博客
Vercel News
Vercel News
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
The Cloudflare Blog
S
Secure Thoughts
www.infosecurity-magazine.com
www.infosecurity-magazine.com
Latest news
Latest news
Recent Announcements
Recent Announcements
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
cs.CV updates on arXiv.org
cs.CV updates on arXiv.org
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
L
LINUX DO - 热门话题
Security Latest
Security Latest
TaoSecurity Blog
TaoSecurity Blog
Cyberwarzone
Cyberwarzone
有赞技术团队
有赞技术团队

RansomLook – Last entries

Syndicate · RansomLook D1r · RansomLook Crpx0 · RansomLook Dataleak · RansomLook Arcus Media · RansomLook Doommageddon · RansomLook Redact · RansomLook Settra · RansomLook Wallstreet · RansomLook Cloak · RansomLook Deadlock · RansomLook 3am · RansomLook Direwolf · RansomLook Inc Ransom · RansomLook Qilin · RansomLook Bavacai · RansomLook Killsec3 · RansomLook Black X · RansomLook Coinbase Cartel · RansomLook Audit Team · RansomLook Abyss-Data · RansomLook Play · RansomLook Ailock · RansomLook Bravox · RansomLook Gunra · RansomLook Genesis · RansomLook Pear · RansomLook Termite · RansomLook Everest · RansomLook Worldleaks · RansomLook Payoutsking · RansomLook Nightspire · RansomLook Triple X · RansomLook Spy Corporate · RansomLook Nova · RansomLook Titan · RansomLook Stormous · RansomLook Nitrogen · RansomLook Money Message · RansomLook Sinobi · RansomLook Icarus · RansomLook Ms13-089 · RansomLook Space Bears · RansomLook Cmd Organization · RansomLook Radar · RansomLook Aurora · RansomLook Secp0 · RansomLook Fulcrumsec · RansomLook Mnt6 · RansomLook Clop · RansomLook Rhysida · RansomLook Tridentlocker · RansomLook Brain Cipher · RansomLook M3rx · RansomLook Lockbit5 · RansomLook Securotrop · RansomLook Leak Bazaar · RansomLook Morpheus · RansomLook Embargo · RansomLook kairos details Leakeddata · RansomLook Safepay · RansomLook Prinz Eugen · RansomLook Crypto24 · RansomLook Ransomexx · RansomLook Payload · RansomLook Leaknet · RansomLook Vect · RansomLook Interlock · RansomLook Nasir Security · RansomLook Black Nevas · RansomLook Chaos · RansomLook Medusa · RansomLook Ransomhouse · RansomLook Dragonforce · RansomLook Krybit · RansomLook Lamashtu · RansomLook medical-park By blackwater Exitium · RansomLook Shinyhunters · RansomLook shadowbyt3$ details The Gentlemen · RansomLook Insomnia · RansomLook Eraleign (Apt73) · RansomLook anubis details Lynx · RansomLook beast details timc details
Akira · RansomLook
RansomLook · 2026-05-08 · via RansomLook – Last entries

akira logo

1419posts (all time)

36last 30 days

9last 7 days

100% avg uptime 30d

Activity · last 30 days last post

akira logo

Parsing: enabled

View crypto

Description

Akira is a ransomware group first observed in March 2023, targeting both Windows and Linux environments, with a particular focus on corporate networks and VMware ESXi servers. The group employs a double extortion model, stealing sensitive data before encrypting systems and threatening to leak it on a Tor-based leak site if ransom demands are not met. Akira typically gains initial access through exploitation of unpatched VPN services, compromised RDP credentials, phishing, or abuse of legitimate remote administration tools. Its Windows variant uses the Windows CryptoAPI to encrypt files, appending the “.akira” extension while skipping critical system folders to maintain system stability. Ransom demands have ranged from $200,000 to over $4 million, typically requested in Bitcoin, and the group has been linked to high-profile incidents affecting education, manufacturing, and healthcare sectors. Akira appears to operate independently rather than as a Ransomware-as-a-Service, and continues to evolve, with recent variants improving encryption speed and evasion techniques.

External Analysis3
Ransom notes3
  • akira_readme_3.txt txt
  • akira_readme.txt txt
  • akira_readme_2.txt txt
Urls2
Chat servers1
Activity (interactive) 1419
Posts1419