Osiris

Active

Osiris is a ransomware-as-a-service operation first observed in November 2025 that uses a Bring Your Own Vulnerable Driver (BYOVD) technique to disable endpoint detection tools before deploying hybrid ECC + AES-128-CTR encryption; Symantec researchers linked its operators to former INC ransomware affiliates.

3 Victims

Dec 18, 2025 First Discovered

Mar 23, 2026 Last Discovered

41 Days Inactive

33.3% Infostealer

1/1 Sites Online

Top Countries

IN 1

US 1

PH 1

Top Sectors

Technology 1

Manufacturing 1

Hospitality and Tourism 1

Known Locations (1)

Osiris

osirisbm3357xrccnid23nlyuqwzbgqheaei6dxvyi34tbkqr3bmvfid.onion

Victims (3)

Mantra Softech Pvt

IN Technology Discovered: Mar 23, 2026 · Attack est.: Jan 17, 2026

Mantra Softech India Pvt. Ltd., founded in 2006 and headquartered in Ahmedabad, is a leading global manufacturer and provider of biometric and RFID technologies, specializing in high-quality hardware, software, and...

American Vanguard

US Manufacturing Discovered: Jan 9, 2026 · Attack est.: Jan 8, 2026

American Vanguard Corporation is a U.S.-based company specializing in agricultural chemicals, primarily focused on crop protection products like herbicides, insecticides, fungicides, and fumigants. Founded in 1969 and headquartered in Newport...

The Araneta Group

PH Hospitality and Tourism Discovered: Dec 18, 2025 · Attack est.: Dec 9, 2025

The Araneta Group is a private, diversified conglomerate in the Philippines — active in property development, food service, leisure & entertainment, and hospitality — and is composed of five main...