← Back to Ransomware Chk

Redalert

Inactive
RedAlert (also called N13V) is a ransomware group first observed in July 2022 that targets both Windows and Linux VMware ESXi servers, encrypting virtual machine files using the NTRUEncrypt algorithm and accepting only Monero for payment, conducting double-extortion attacks against corporate networks.
6 Victims
Jul 13, 2022 First Discovered
Sep 22, 2022 Last Discovered
1320 Days Inactive
0% Infostealer
0/2 Sites Online
Top Countries
GB 1
FR 1
Top Sectors
Business Services 2
Known Locations (2)
Login
je2yizds7r4uidk6uixfxwjj5w7or2agit4aj66l4lrhdbrvr3lsymid.onion
Board of shame
blog2hkbm6gogpv2b3uytzi3bj5d5zmc4asbybumjkhuqhas355janyd.onion
Victims (6)
www.bbadmin.com
Business Services Discovered: Sep 22, 2022 · Attack est.: Sep 22, 2022
groupg4.com
Discovered: Sep 13, 2022 · Attack est.: Sep 13, 2022
coarc.org
Discovered: Jul 28, 2022 · Attack est.: Jul 28, 2022
keystonelegal.co.uk
GB Business Services Discovered: Jul 20, 2022 · Attack est.: Jul 20, 2022
vahanen.com
Discovered: Jul 14, 2022 · Attack est.: Jul 14, 2022
syredis.fr
FR Discovered: Jul 13, 2022 · Attack est.: Jul 13, 2022
Source: Ransomware.live | Data cached and served by Digital Checkmark IT Services | Ransomware Chk