hiveleak attacks UNICRED

Incident Date:

January 20, 2022

World map



hiveleak attacks UNICRED






Hyderabad, India

Telangana, India

First Reported

January 20, 2022

UNICRED: A Finance Sector Victim of Hiveleak Ransomware Attack

Industry Context

The finance sector is a prime target for ransomware attacks due to the sensitive nature of the data they handle. Ransomware attacks have been on the rise in recent years, with a 600% increase in cybercrimes in Southeast Asia alone. These attacks can disrupt essential services such as healthcare, schools, finance, insurance, government functions, and critical infrastructure.


The specific vulnerabilities that led to UNICRED being targeted are not mentioned in the search results. However, it is known that ransomware attacks often exploit unpatched software vulnerabilities or weak passwords. Additionally, supply-chain attacks, where a third-party provider is compromised, can also lead to widespread disruption.

Mitigation Strategies

To mitigate the risks of ransomware attacks, companies should implement robust cybersecurity measures, such as regular software updates, strong password policies, and employee training on cybersecurity best practices. Additionally, maintaining a robust incident response plan and regularly testing it can help minimize the impact of an attack.

The Hiveleak ransomware attack on UNICRED highlights the ongoing threat of ransomware to the finance sector. While the specific vulnerabilities that led to this attack are not mentioned in the search results, it is clear that the finance sector is a prime target for these types of attacks. Companies in this sector should take proactive measures to protect themselves, including implementing robust cybersecurity measures and maintaining a robust incident response plan.


  • Privacy Affairs: Privacy Affairs
  • VMware: VMware
  • Infosecurity Magazine: Infosecurity Magazine - Phobos Ransomware Family Expands With New FAUST Variant
  • The Record by Recorded Future: The Record - Hospitals offline across Romania following ransomware attack on IT platform
  • TechCrunch: TechCrunch - UnitedHealth confirms ransomware gang behind Change Healthcare attack
  • Tripwire: Tripwire - Supply-chain ransomware attack causes outages at over 60 credit unions

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.