Arsenal Exploits TTP Matrix KillChain Mapa Actores SSLBL RansomLook Ransomwhere Alertas CyberNews

linkc

4 incidentes 1 paises 2 sectores ransomware Ultimo: 2026-06-25

Linkc is a ransomware group that first appeared in January 2025, operating a Tor-based data leak site to execute double-extortion attacks for financial gain. The group distinguishes itself by its focused targeting of US-based entities in the artificial intelligence, cloud computing, aerospace, and manufacturing sectors, specifically aiming to exfiltrate highly sensitive intellectual property such as AI model source code, driverless system blueprints, and customer datasets. This specialized targeting, coupled with ransom demands as high as $15 million, underscores their intent to monetize critical organizational data and intellectual property rather than merely disrupting operations. There is no indication that Linkc operates under multiple names, but it should not be confused with Lynx ransomware, a distinct group.

RansomLook pivots

Data, inteligencia y referencias externas para contrastar actividad ransomware del actor.

Abrir perfil →

Data

Recent Browse Trending Stats

Intel

Group URLs Crypto Leaks Notes Analyses Torrents

Info

API Glossary About

Victimas

TTPs unicas

Info robada historica

N/D

Rescates reclamados

N/D

Pagos detectados

N/D

Paises afectados

United States (3)

Paises objetivo (SOCRadar)

United Kingdom

Mexico

United States

Sectores atacados

Technology (1) Manufacturing (2)

Sectores objetivo (SOCRadar)

Other Information ServicesSoftware PublishersManufacturingElectrical Equipment, Appliance, and Component ManufacturingPublic AdministrationEducational ServicesData Processing ServicesSpace & DefenseInsuranceAircraft Manufacturing