Live Latest activity →

News·CISA Flags LiteSpeed cPanel Plugin Flaw Exploited for R

genesis

Known ransomware group ACTIVE

Currently active

Genesis is an emerging ransomware group first observed in late 2025, targeting small to mid-sized US organizations across healthcare, retail, financial services, legal, and manufacturing using double-extortion tactics, focusing heavily on data exfiltration and public leaking.

6

Total Claims

5

Critical

—

Records Claimed

4

Industries Hit

Active span: May 8, 2026 – Jun 3, 2026 · 6 organizations targeted

Currently active

Actor Threat Profile

Activity Timeline

Peak: May 2026 (5)

May 2026

LessMore

Jun 2026

Share this profile

Shareable intel card for genesis

Top Targeted Industries

Healthcare 3

Financial Services 1

Energy 1

Public Sector 1

Tradecraft & Infrastructure

0

Documented tools

0 / 0

MITRE tactics / techniques

1

Known leak sites

Full intelligence profile on ransomware.live →

Targeted Organizations

Family Medical Associates of Raleigh Cedar Street Capital (A part of a Cynvestors Limited Partnership)Green Resource Casino Gaming Commission The American Board of Preventive Medicine CarePoint Health

Claims by genesis

Ransomware Claim: Family Medical Associates of Raleigh

Family Medical Associates of Raleigh

Ransomware Healthcare

Ransomware Claim: Cedar Street Capital (A part of a Cynvestors Limited Partnership)

Cedar Street Capital (A part of a Cynvestors Limited Partnership)

Ransomware Financial Services

Ransomware Claim: Green Resource

Ransomware Energy

Ransomware Claim: Casino Gaming Commission

Casino Gaming Commission

Ransomware Public Sector

Ransomware Claim: The American Board of Preventive Medicine

The American Board of Preventive Medicine

Ransomware Healthcare

Ransomware Claim: CarePoint Health

CarePoint Health

Ransomware Healthcare