hiveleak attacks Travira Air

Incident Date:

May 28, 2022

World map



hiveleak attacks Travira Air


Travira Air




Makasar Jakarta, Indonesia

Makasar, Indonesia

First Reported

May 28, 2022

Travira Air Suffers Ransomware Attack by Hiveleak Group

Company Overview

Travira Air, a company operating in the Transportation sector, has been targeted by the ransomware group Hiveleak. The attack was announced on the group's dark web leak site, and the victim's website is currently under threat.

Ransomware Attack

The ransomware attack on Travira Air is indicative of a broader trend where ransomware groups are increasingly leveraging zero-day vulnerabilities to infiltrate victim networks. This strategy has contributed to a significant 143% rise in the total number of ransomware victims from Q1 2022 to Q1 2023.


While specific details regarding Travira Air's vulnerabilities are not disclosed, it is evident that ransomware groups like Hiveleak are exploiting zero-day vulnerabilities to access target networks, highlighting the critical need for robust cybersecurity defenses.

Mitigation Strategies

To counteract the threat of ransomware attacks, organizations are advised to implement comprehensive data backup and restoration protocols, utilize advanced security software solutions, and remain abreast of emerging security vulnerabilities and threats.

The ransomware attack on Travira Air by the Hiveleak group underscores the escalating trend of ransomware groups targeting zero-day vulnerabilities to compromise victim networks. It is imperative for organizations to enhance their security measures and stay informed about the latest cybersecurity threats and vulnerabilities to mitigate the risk of ransomware attacks.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.