← Back to Ransomware Chk
0mega
Active
0mega is a double-extortion ransomware group that emerged in May 2022, targeting businesses across multiple sectors worldwide by encrypting files and threatening to leak stolen data; it also pivoted to cloud-based extortion by compromising Microsoft 365 admin accounts.
7
Victims
Jul 13, 2022
First Discovered
Jan 25, 2024
Last Discovered
829
Days Inactive
75%
Infostealer
1/2
Sites Online
Top Sectors
Business Services 3
Healthcare 2
Transportation/Logistics 1
Manufacturing 1
Known Locations (2)
0mega | Blog
omegalock5zxwbhswbisc42o2q2i54vdulyvtqqbudqousisjgc7j7yd.onion
Victims (7)
Four Hands LLC
US
Business Services
Discovered: Jan 25, 2024 · Attack est.: Jan 24, 2024
Manufacturing and distributing home furnishing products, retail, design
Rotorcraft Leasing Company
Transportation/Logistics
Discovered: Oct 17, 2023 · Attack est.: Oct 17, 2023
Helicopter support, pilot training, fueling service, maintenance
US Liner Company & American Made LLC
Manufacturing
Discovered: Oct 4, 2023 · Attack est.: Oct 4, 2023
Industrial engineering, manufacturing, advanced materials, thermoplastic composite solutions
Aviacode (GeBBS)
Healthcare
Discovered: Feb 11, 2023 · Attack est.: Feb 11, 2023
Medical coding, outsourced coding, auditing & consulting
Aviacode
Healthcare
Discovered: Jan 9, 2023 · Attack est.: Jan 9, 2023
Medical coding, outsourced coding, auditing & consulting
Nextlabs
US
Business Services
Discovered: Sep 15, 2022 · Attack est.: Sep 15, 2022
Business services, security software & IT services, risk management software
Maxey Moverley
Business Services
Discovered: Jul 13, 2022 · Attack est.: Jul 13, 2022
Electronics repair & refurbishment, technical service, CCTV