morpheus
11 incidentes
5 paises
5 sectores
ransomware Ultimo: 2026-06-25
Morpheus is a ransomware and data extortion group that first emerged in late 2024, with its activity traceable back to at least September 2024, and its data leak site launching in December 2024. Operating as a semi-private Ransomware-as-a-Service (RaaS) model, Morpheus focuses on double-extortion by encrypting files and exfiltrating sensitive data for leverage. Its primary motivation is financial gain through a "big game hunting" strategy, targeting high-value organizations to maximize profit. What sets Morpheus apart is its unique extortion tactic of preferring private sales of stolen data over public leaks to control risk and extract larger sums, and its ransomware payloads do not alter file extensions, making detection potentially more challenging. Morpheus ransomware payloads are notably similar to those used by the HellCat operation, suggesting shared codebases or affiliates within the evolving ransomware ecosystem.
RansomLook pivots
Data, inteligencia y referencias externas para contrastar actividad ransomware del actor.
TTPs observadas
Paises afectados
Paises objetivo (SOCRadar)
Australia
Belgium
Brazil
Canada
Switzerland
China
Costa Rica
Germany
Denmark
SpainSectores atacados
Financial Services (2)
Technology (2)
Business Services (2)
Agriculture and Food Production (1)
Manufacturing (2)
Sectores objetivo (SOCRadar)
Construction of BuildingsFood ManufacturingOther Information ServicesSoftware PublishersReal EstateEnterprises & HoldingAccommodationManufacturingConstructionElectrical Equipment, Appliance, and Component Manufacturing
URLs nuevas detectadas en IntelTracker
Victimas (10)
Ransomware 
United States Business Services
United States Business Services Resumen La empresa Delegal Poindexter & Underkofler, P.A., un proveedor de servicios legales especializado en empleo, ha sido afectada por un ataque d…
Ransomware 
India Financial Services
India Financial Services Resumen HDFC FUND es una empresa de inversión líder en India con un volumen de negocio de $427.8 millones. La alerta de ransomware identifica a Morphe…
Ransomware Victim: HDFC FUND (morpheus)10 Jun 2026
Ransomware India
India HDFC FUND Victima de ransomware reportada en el dashboard de morpheus. CampoValor Grupomorpheus PaisIN SectorFinancial Services Fecha2026-06-10T08:22:…
Ransomware India Technology
India Technology Resumen Se ha emitido una alerta de ransomware relacionada con la empresa 3i Infotech, identificada como parte del grupo Morpheus. La compañía, regist…
Ransomware Victim: 3I INFOTECH (morpheus)8 Jun 2026
Ransomware India Technology
India Technology 3I INFOTECH Victima de ransomware reportada en el dashboard de morpheus. CampoValor Grupomorpheus PaisIN SectorTechnology Fecha2026-06-08T12:25:05.060…
BAYTECH A/S14 May 2026
Ransomware Denmark Business Services
Denmark Business Services Resumen Se ha reportado una alerta de ransomware relacionada con la empresa Baytech A/S, un proveedor de sistemas de grúas y soluciones logísticas en …
Ransomware United States Financial Services
United States Financial Services Resumen Se ha reportado una alerta de ransomware relacionada con el grupo Morpheus que afectó a la empresa GGI. La organización, especializada en segu…
Ransomware 
Tanzania Agriculture and Food Production
Tanzania Agriculture and Food Production Resumen SBC Tanzania Limited, una empresa de fabricación y distribución de bebidas en Tanzania, ha sido identificada como objetivo de un ataque ransom…
Ransomware 
South Korea Manufacturing
South Korea Manufacturing Resumen SURTECHINC, una empresa líder en la industria del revestimiento con un ingreso anual de $5 millones, ha sido alertada sobre un ataque de ranso…
Ransomware 
Mexico Hospitality and Tourism
Mexico Hospitality and Tourism Resumen Sunset World Resorts, un grupo hotelero mexicano con sede en Cancún, ha sido objeto de una alerta de ransomware el 2026-01-29. La empresa, con…