APT / THREAT GROUP
Anubis Ransomware
5
victims
1
aliases
Intelligence Profile
This is most likely to affect English speaking users, since the note is written in English. English is understood worldwide, thus anyone can be harmed. The hacker spread the virus using email spam, fake updates, and harmful attachments. All your files are compromised including music, MS Office, Open Office, pictures, videos, shared online files etc.. EDA2
Threat Analysis
Anubis Ransomware is a known-sophistication threat actor of undetermined national origin, engaged in cyber operations with a primary motivation of unknown activity patterns.
Ransomware Victims (5)
CTIWATCH tracks 5 organizations claimed as victims by Anubis Ransomware on its data leak site, with attack dates, sectors and countries.
View full victims list →Intelligence Reports Mentioning Anubis Ransomware
Ransomware Groups Turn to Citrix Bleed 2, BYOVD, and Supply Chain Credentials
The Hacker News· Jul 2, 2026
Adriatic Port Cyber-Attack by Anubis Sparks Warning Over Maritime Security Risks
Infosecurity Magazine· Jun 15, 2026
9th March – Threat Intelligence Report
Check Point Research· Mar 9, 2026
External References
Quick Facts
TypeAPT / Threat Group
Aliases1
Also Known As
Anubis Ransomware
Research Links
Data sourced from Malpedia, Ransomware.live, RansomLook, and CTIWATCH OSINT collection. Actor attribution is based on available intelligence and may be incomplete.