Abyss (also known as Abyss Locker) is a ransomware operation first identified in March 2023, derived from the Babuk source code, that targets Windows and Linux/VMware ESXi systems using double-extortion tactics across healthcare, manufacturing, finance, and technology sectors — predominantly in North America.
Genera un perfil del actor con IA (defensivo) cuando lo pidas.
Este grupo no tiene TTPs curadas. Puedes generar un mapeo MITRE ESTIMADO por IA (no confirmado) a partir de su descripción/notas, solo cuando lo pidas.
Firma de detección defensiva para este grupo (úsala en tu EDR/SIEM). Fuente: ransomware.live.
/*
abyss ransomware
*/
rule abyss_Ransomnote
{
meta:
author = "ransomware.live"
family = "ransomware.abyss"
description = "Detects abyss ransomware ransom note or artifact"
date = "2026-05-04"
severity = 7
score = 70
strings:
$name1 = "abyss" ascii nocase
$name2 = "ABYSS" ascii
$onion = "abyss.onion" ascii nocase
condition:
any of them
}
School Facility Consultants (SFC) is a full-service company that provides expert guidance in school facility planning and funding for School Districts, County Offices of Education, and Charter Schools across California.
The district administration of Limburg-Weilburg County in the state of Hesse, Germany. The organization performs local government functions and is responsible for a wide range of public services for the district's residents.
| Organización | País | Sector | Grupo | Descubierta |
|---|---|---|---|---|
| School Facility Consultants | Business Services | — | 1 jun 2026 | |
| landkreis-limburg-weilburg.de | DE | Public Sector | — | 1 jun 2026 |
Las direcciones de los sitios de filtración (.onion) se conocen pero no se publican ni se enlazan. Solo se muestran metadatos públicos. ética