alphv attacks |

Incident Date:

April 12, 2022

World map



alphv attacks |

Victim |




Roma, Italy

Roma, Italy

First Reported

April 12, 2022

Bet9ja and Goldbet Suffer Ransomware Attack by Alphv Group

Victim Profiles

Bet9ja, co-founded by Ayo Ojuroye and Kunle Soname, is a market-leading online betting platform in Nigeria that offers betting on major sporting events. The company has been operational since at least April 6, 2022, when the ransomware attack occurred.

Goldbet, on the other hand, is an Italian betting platform that operates in the Media & Internet sector. The size of the company and its specific vulnerabilities are not provided in the search results.

Attack Impact

The Alphv group claimed to have encrypted files on the victims' computers, rendering them inaccessible until a ransom is paid. Bet9ja assured its customers that all funds are safe and the issue will be resolved.

Alphv Group

Alphv, also known as BlackCat, is a relatively new ransomware-as-a-service (RaaS) operation that has been aggressively recruiting affiliates from other ransomware groups and targeting organizations worldwide. The group is believed to be a rebranded version of BlackMatter or DarkSide ransomware.

Mitigation and Response

Bet9ja has hired independent cyber forensics and cybercrime experts to investigate and resolve the situation. The company has also taken steps to reduce and mitigate any risk to their network systems and operations.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.