Ransomware Attacks Reach Peak Levels During December 2025 Holiday Period
ID: 3ff7c150-5512-5287-abda-2ab6affa4a4f
STIX ID: report--3ff7c150-5512-5287-abda-2ab6affa4a4f
Feed Name: Halcyon Blog
Threat Score
**December 2025 recorded a record 727 ransomware attack claims—led by Qilin and a dramatic LockBit 5.0 resurgence—with manufacturing and construction most impacted and significant activity across North America and Europe; multiple emerging groups (Kazu, Benzona, TridentLocker, MintEye) carried out double-extortion and data-leak operations, leveraging loaders and anti-analysis techniques, causing operational disruptions and notable data exfiltration.**
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.