dAn0n is a financially motivated cyber extortion group that first emerged in the spring of 2024, distinguishing itself by initially operating as a data broker rather than deploying traditional ransomware encryption. The group specialized in exfiltrating sensitive data and subsequently using aggressive public pressure tactics to coerce victims into paying ransoms for the data's return and to prevent its public release. This unique approach involved a detailed, multi-step extortion process tracked via a graphical user interface on their data leak site, informing various stakeholders such as leadership, insurance companies, clients, and regulatory authorities. Although their operations under the dAn0n name ceased in late August 2024 after publishing 19 victims, the group reportedly reappeared in 2025 as 'White Lock', which transitioned to utilizing traditional crypto-ransomware.