Live Latest activity →
IN

interlock

Known ransomware group
Dormant / low-volume

Interlock is a ransomware operation active since 2024 that targets both Windows and FreeBSD/Linux systems, notable for using fake browser-update lures and "ClickFix" social engineering for initial access. It has struck healthcare and critical-infrastructure organizations.

1

Total Claims

1

Critical

Records Claimed

1

Industries Hit

Active span: May 11, 2026 – May 11, 2026 · 1 organizations targeted

Dormant / low-volume
Activity 1.9 Severity 10.0 Sectors 2.3 Tooling 2.2

Actor Threat Profile

Activity Timeline

Peak: May 2026 (1)
May 2026
LessMore
May 2026

Share this profile

Shareable intel card for interlock

Top Targeted Industries

Healthcare 1

Tradecraft & Infrastructure

11

Documented tools

0 / 0

MITRE tactics / techniques

2

Known leak sites

DefenseEvasionDiscoveryEnumExfiltrationLOLBASNetworkingOffsecRMM-Tools
Full intelligence profile on ransomware.live →

Targeted Organizations

Park Dental Research

Claims by interlock

Critical

Ransomware Claim: Park Dental Research

Park Dental Research
interlock
Ransomware Healthcare
May 12, 2026

Never Miss a Critical Alert

CVE advisories, breach reports, and threat intel — delivered daily to your inbox.