alphv attacks Tnq

Incident Date:

July 28, 2022

World map



alphv attacks Tnq






Chennai, India

Tamil Nadu, India

First Reported

July 28, 2022

TNQ, a Scholarly Publishing Pioneer, Suffers Ransomware Attack by Alphv

TNQ, a leading player in the scholarly publishing sector, has been targeted by the ransomware group Alphv. The attack was confirmed through a leak on Alphv's dark web site, which also revealed that TNQ operates in the Media & Internet sector. The company's website provides insights into its focus on scholarly excellence and AI-driven efficiency, aiming to disrupt the industry with its innovative approach.

TNQ's website does not provide detailed information about the company's size or specific vulnerabilities that led to the attack. However, it is known that Alphv has been particularly active in the healthcare sector, with a notable attack on Change Healthcare resulting in a $22 million ransom payment. This suggests that Alphv may target industries with significant digital infrastructure and valuable data, such as healthcare and scholarly publishing.

Alphv is known for its ransomware-as-a-service model, where developers create and update the ransomware, and affiliates identify and attack high-value targets. The group has also been linked to a prolific ransomware variant, Blackcat, which has caused significant disruptions to critical infrastructure and healthcare services.

To mitigate the impact of ransomware attacks, organizations should prioritize remediation of known exploited vulnerabilities, enable multifactor authentication, close unused ports, and remove unnecessary applications. It is crucial for companies to stay informed about the latest threats and implement robust cybersecurity measures to protect their digital assets.


  • TNQTech: Scholarly Excellence. AI-Driven Efficiency.
  • Hackers Behind the Change Healthcare Ransomware Attack
  • Justice Department Disrupts Prolific ALPHV/Blackcat Ransomware Variant
  • #StopRansomware: ALPHV Blackcat | CISA

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.