Skip to main content

Ransomwhere.org

Dashboard Live Map About Feed Groups

Payments TTPs Identify News API

LIVE

Ransomwhere.org

Real-time ransomware intelligence platform. Tracking threat actors, victims, and payments to raise awareness and help defend against ransomware attacks worldwide.

Platform

Live Map
Latest Victims
Groups
Payments
Identify
News

Resources

Data & Methodology
API Docs
RSS Feed
About
Privacy Policy
Terms of Service
NoMoreRansom
Ransomware.live
CISA Advisories

For informational purposes only.

© 2026 Ransomwhere.org

Groups/0mega

// group profile

0mega

Active

0mega is a double-extortion ransomware group that emerged in May 2022, targeting businesses across multiple sectors worldwide by encrypting files and threatening to leak stolen data; it also pivoted to cloud-based extortion by compromising Microsoft 365 admin accounts.

7

Victims

2

Sites

Victims (7)

Live

Four Hands LLC

0megaUnited States

Rotorcraft Leasing Company

US Liner Company & American Made LLC

Aviacode (GeBBS)

Aviacode

Nextlabs

0megaUnited States

Maxey Moverley

Known Leak Sites

0mega.ccDLS

omegalock5zxwbhswbisc42o2q2i54vdulyvtqqbudqousisjgc7j7yd.onionDLS

Top Targeted Countries

United States2

Activity

Total victims7

Countries affected1

Last seenNo recent activity

Explore

Ransomware NewsRelated articles

Check DecryptorsFree tools

Payment DataRansom tracking

MITRE ATT&CKTechniques

Live MapGlobal view

Source: ransomware.live|Refreshes every 5 min