Ransomware Group intelligence
Triple X
ActiveTrack Triple X with 2 published victims and 2 known leak locations in a single intelligence view.
Overview
Triple X is tracked by Breach House as a ransomware group with 2 published victims.
Indonesia is currently the most targeted country in this dataset.
2 known leak locations are currently associated with this group.
Top Countries
Interactive distribution based on the currently visible victims list.
Known Leak Locations (2)
| Label | Type | Availability | Links |
|---|---|---|---|
| Leak location 1 | Onion service | Unknown | 6qqz6m3b6htudohg2mlf5gdcalonxy3sh5g4dix4mpyirjcgelqqufad.onion |
| Leak location 2 | Onion service | Unknown | ojcmpbdncjo5dhaxxll44bq6to3kwqtoeraevgsjquhdtt4uv5l4igid.onion |
Top Activity Sectors
No sector intelligence available.
Ransom Notes (0)
▼No ransom notes available for this group.
Tools Used
▼No tools used available.
YARA Rules (0)
▼No YARA rules available.
Indicators of Compromise (0)
▼No IoCs available for this group.
Negotiation Chats (0)
▼No negotiation chats available.
Research Sources
No external research sources linked yet.
Victims (2)
Search, filter and paginate the victim timeline for Triple X.
| Type | Target | Discovered | Country | Business Category | Intel Link |
|---|---|---|---|---|---|
| Ransomware | Bni.co.id bank of indonesia free data. id29851 View details | Indonesia | Finance / Legal / Insurance | ||
|
BANK of indonesia bni.co.id Customer information from 2024 to 2026 All customer contracts, passports, and ID cards (few pic attached) It’s strange the bank has such a severe security weakness. full data is 2 TB few sample pics: pic 1 pic 2 pic 3 pic 4 pic 5 part 1 ~ 100Gig free download : http://6qqz6m3b6htudohg2mlf5gdcalonxy3sh5g4dix4mpyirjcgelqqufad.onion/bni.co.id/ pass : bnibnibni we will leak few days later new parts, if u wanna download full pack PM us in forums (https://forum.exploit.in/profile/240235-apt8172/) and get link. If you want to buy the bni bank 2026 fresh data, send a private message... |
|||||
| Ransomware | Law Offices US immigrationonline.com id29852 View details | United States | Services | ||
|
https://immigrationonline.com/ 1.5 terabytes of people's data in a immigrationonline law firm. Server overload and lack of updates have caused important data to be exposed to potential leaks. At the same time, many of these financial and tax documents also contain sensitive personal information, including full names, home addresses, Social Security numbers, banking details, and contact information. what will leak ? Confidential court cases : Details of lawsuits, complaints, or defenses that have not yet been filed in court. Financial and banking information : Sensitive client accounts, contracts, or transactions. Intellectual property documents : Such as patents, designs, or business contracts that have not yet been made public. Private correspondence and emails : Communications between the attorney and the client that should remain strictly confidential. what data will leak ? 24,900 passport files sample Tax forms of employees and colleagues sample ID cards and driver’s licenses sample few sample pics: pic 1 pic 2 pic 3 pic 4 pic 5 This is probably the right moment to point out that, at a certain stage, virtually any data breach is still a reversible situation. Companies are usually given an opportunity to contain the damage and resolve the issue albeit at a price. But despite knowing exactly what was happening, and fully understanding that it was putting the security and privacy of its own employees at risk, the company made a calculated decision to let it happen. And now the company will tell its employees: “Sorry, we’ve experienced a data breach, and your passports are now publicly available online.” But they will never say: “We were offered a chance to pay to prevent your passports from being published, but we decided it wasn’t worth it so now they’re on the internet. Sorry.” download data link : http://6qqz6m3b6htudohg2mlf5gdcalonxy3sh5g4dix4mpyirjcgelqqufad.onion/immigrationonline.com/ |
|||||