All ransomware groups
kazu
9 tracked victims
·first seen 2025-11-06·last activity 2026-01-26Group profile
Kazu is an emerging ransomware group active since September 2025 that employs double-extortion tactics, targeting government, healthcare, and financial organizations primarily in Southeast Asia, the Middle East, and Latin America, with notable claimed breaches including Dubai's Ports, Customs and Free Zone Corporation with 1.94 TB exfiltrated.
Recent victims
| Date | Website / victim | Sector | Country |
|---|---|---|---|
| 2026-01-26 |  zHealthEHR — Practice Management Software for Chiropractic & Wellness Clinicswww.zhealthehr.com | Technology | US |
| 2026-01-12 |  MyVetemyvete.com | Business Services | ES |
| 2025-12-29 |  ManageMyHealth - New Zealandmanagemyhealth.co.nz | Healthcare | NZ |
| 2025-12-29 |  Saudi Iconwww.saudi-icon.com | Construction | SA |
| 2025-12-11 |  Leadway Assuranceleadwayhealth.com | Financial Services | NG |
| 2025-12-06 |  CT Dent Ltdwww.ct-dent.co.uk | Healthcare | GB |
| 2025-11-10 |  National Civil Service Commission of Colombiacnsc.gov.co | Public Sector | CO |
| 2025-11-08 |  Defensoría del Pueblo de Colombia – Protection and Promotion of Human Rightswww.defensoria.gov.co | Public Sector | CO |
| 2025-11-06 |  Doctor Alliance – Streamlined Document and Billing Management for Healthcare Providersdoctoralliance.com | Healthcare | US |