| # | domain | network | attack type |
|---|
2026-07-09_12-05-08
The cyberattacks attributed to noname057 primarily target websites in Germany, Ukraine, and various international platforms. Key countries under attack include Germany, with multiple sites such as bmjv.de, fraunhofer.de, and bmv.de, and Ukraine, represented by kza.com.ua and iskra.zp.ua. Other targeted sites serve global audiences, highlighting a broad scope of interest in international tendering and financial services.AI generated25 targets are under attack, 7 new targets and 18 targets from previous attack
New Targets(7): www.iskra.zp.ua, www.srdsc.com, www.kza.com.ua, lemtrans.com.ua, www.test.khadb.kh.ua, sparing-vist.ua, keramet.com.ua
Targets from prev attack(18): www.tender24.de, it-ausschreibung.de, www.globaltenders.com, dtvp.de, www.boerse-duesseldorf.de, www.tendersinfo.com, www.land.nrw, www.bmjv.de, www.boersenag.de, www.fraunhofer.de, www.quotrix.de, www.service.bund.de, www.lfst.bayern.de, biddetail.com, www.bmv.de, www.tradegatebsx.com, www.geschw-stevens.de, www.dslv.org
Dismissed Targets(0):
New Targets(7): www.iskra.zp.ua, www.srdsc.com, www.kza.com.ua, lemtrans.com.ua, www.test.khadb.kh.ua, sparing-vist.ua, keramet.com.ua
Targets from prev attack(18): www.tender24.de, it-ausschreibung.de, www.globaltenders.com, dtvp.de, www.boerse-duesseldorf.de, www.tendersinfo.com, www.land.nrw, www.bmjv.de, www.boersenag.de, www.fraunhofer.de, www.quotrix.de, www.service.bund.de, www.lfst.bayern.de, biddetail.com, www.bmv.de, www.tradegatebsx.com, www.geschw-stevens.de, www.dslv.org
Dismissed Targets(0):
2026-07-09_10-05-06
Noname057(16) has targeted various websites primarily located in Germany. The attacked sites include government, financial, and tender-related platforms, indicating a focus on critical infrastructure and public services. Key countries under attack include Germany, with multiple domains linked to federal and regional institutions, as well as platforms facilitating trade and tenders.AI generated18 targets are under attack, 12 new targets and 6 targets from previous attack
New Targets(12): www.lfst.bayern.de, www.bmjv.de, it-ausschreibung.de, www.dslv.org, dtvp.de, www.globaltenders.com, www.service.bund.de, biddetail.com, www.tender24.de, www.bmv.de, www.tendersinfo.com, www.land.nrw
Targets from prev attack(6): www.geschw-stevens.de, www.fraunhofer.de, www.boersenag.de, www.tradegatebsx.com, www.quotrix.de, www.boerse-duesseldorf.de
Dismissed Targets(4): v.bkport.com, www.bkport.com, erouter.bkport.com, doc.bkport.com
New Targets(12): www.lfst.bayern.de, www.bmjv.de, it-ausschreibung.de, www.dslv.org, dtvp.de, www.globaltenders.com, www.service.bund.de, biddetail.com, www.tender24.de, www.bmv.de, www.tendersinfo.com, www.land.nrw
Targets from prev attack(6): www.geschw-stevens.de, www.fraunhofer.de, www.boersenag.de, www.tradegatebsx.com, www.quotrix.de, www.boerse-duesseldorf.de
Dismissed Targets(4): v.bkport.com, www.bkport.com, erouter.bkport.com, doc.bkport.com
2026-07-09_08-05-07
Noname057(16) has targeted several websites primarily based in Germany, including financial and trading platforms such as Boerse Duesseldorf and Tradegate. Other affected sites include various broker and investment platforms, indicating a focus on the financial sector. The attacks suggest a concentrated effort against German entities, particularly in the finance and trading industries.AI generated10 targets are under attack, 6 new targets and 4 targets from previous attack
New Targets(6): www.fraunhofer.de, www.geschw-stevens.de, www.tradegatebsx.com, www.boersenag.de, www.quotrix.de, www.boerse-duesseldorf.de
Targets from prev attack(4): v.bkport.com, erouter.bkport.com, doc.bkport.com, www.bkport.com
Dismissed Targets(27): www.tangermuende.de, www.service-bw.de, www.naumburg.de, www.saalekreis.de, www.deutsche-boerse.com, login.evergabe.de, www.evergabe-mv.de, finanzamt.hessen.de, www.customs-broker.de, vergabemarktplatz.brandenburg.de, www.bescha.bund.de, www.tangerhuette.de, www.deutsches-ausschreibungsblatt.de, www.evergabe.de, www.salzwedel.de, www.limbach-oberfrohna.de, www.vergabe24.de, support.cosinex.de, auftraege.bayern.de, www.wanzleben-boerde.de, www.zwickau.de, www.elster.de, www.kaiserslautern.de, www.evergabe-online.de, beteiligungsportal.hessen.de, www.nowycasnik.de, www.evergabe.nrw.de
New Targets(6): www.fraunhofer.de, www.geschw-stevens.de, www.tradegatebsx.com, www.boersenag.de, www.quotrix.de, www.boerse-duesseldorf.de
Targets from prev attack(4): v.bkport.com, erouter.bkport.com, doc.bkport.com, www.bkport.com
Dismissed Targets(27): www.tangermuende.de, www.service-bw.de, www.naumburg.de, www.saalekreis.de, www.deutsche-boerse.com, login.evergabe.de, www.evergabe-mv.de, finanzamt.hessen.de, www.customs-broker.de, vergabemarktplatz.brandenburg.de, www.bescha.bund.de, www.tangerhuette.de, www.deutsches-ausschreibungsblatt.de, www.evergabe.de, www.salzwedel.de, www.limbach-oberfrohna.de, www.vergabe24.de, support.cosinex.de, auftraege.bayern.de, www.wanzleben-boerde.de, www.zwickau.de, www.elster.de, www.kaiserslautern.de, www.evergabe-online.de, beteiligungsportal.hessen.de, www.nowycasnik.de, www.evergabe.nrw.de
2026-07-08_12-05-08
The recent attacks attributed to noname057 primarily target websites in Germany, with a focus on various governmental and administrative domains. Key cities affected include Saalekreis, Wanzleben-Börde, Naumburg, Zwickau, Limbach-Oberfrohna, Kaiserslautern, and Salzwedel. The attacks also extend to services related to public procurement and taxation, indicating a strategic interest in disrupting public services in Germany.AI generated31 targets are under attack, 14 new targets and 17 targets from previous attack
New Targets(14): www.saalekreis.de, www.customs-broker.de, www.bescha.bund.de, auftraege.bayern.de, www.evergabe.nrw.de, www.evergabe-online.de, www.deutsches-ausschreibungsblatt.de, beteiligungsportal.hessen.de, www.salzwedel.de, www.service-bw.de, vergabemarktplatz.brandenburg.de, www.deutsche-boerse.com, www.elster.de, www.vergabe24.de
Targets from prev attack(17): www.bkport.com, www.kaiserslautern.de, www.wanzleben-boerde.de, login.evergabe.de, www.evergabe-mv.de, www.naumburg.de, www.tangerhuette.de, doc.bkport.com, support.cosinex.de, www.zwickau.de, www.limbach-oberfrohna.de, finanzamt.hessen.de, www.evergabe.de, www.tangermuende.de, erouter.bkport.com, www.nowycasnik.de, v.bkport.com
Dismissed Targets(0):
New Targets(14): www.saalekreis.de, www.customs-broker.de, www.bescha.bund.de, auftraege.bayern.de, www.evergabe.nrw.de, www.evergabe-online.de, www.deutsches-ausschreibungsblatt.de, beteiligungsportal.hessen.de, www.salzwedel.de, www.service-bw.de, vergabemarktplatz.brandenburg.de, www.deutsche-boerse.com, www.elster.de, www.vergabe24.de
Targets from prev attack(17): www.bkport.com, www.kaiserslautern.de, www.wanzleben-boerde.de, login.evergabe.de, www.evergabe-mv.de, www.naumburg.de, www.tangerhuette.de, doc.bkport.com, support.cosinex.de, www.zwickau.de, www.limbach-oberfrohna.de, finanzamt.hessen.de, www.evergabe.de, www.tangermuende.de, erouter.bkport.com, www.nowycasnik.de, v.bkport.com
Dismissed Targets(0):
2026-07-08_10-25-07
The attacks by noname057 primarily targeted websites in Germany, including municipal and governmental sites such as tangermuende.de, hessen.de, and zwickau.de. Other affected sites belong to various local authorities and service providers, indicating a focus on German entities. Additionally, there is one site from Poland, nowycasnik.de, suggesting a broader regional interest. Overall, the primary country under attack is Germany.AI generated17 targets are under attack, 0 new targets and 17 targets from previous attack
New Targets(0):
Targets from prev attack(17): www.tangermuende.de, finanzamt.hessen.de, www.bkport.com, www.tangerhuette.de, support.cosinex.de, www.kaiserslautern.de, doc.bkport.com, www.evergabe-mv.de, v.bkport.com, www.naumburg.de, www.wanzleben-boerde.de, login.evergabe.de, www.nowycasnik.de, erouter.bkport.com, www.limbach-oberfrohna.de, www.zwickau.de, www.evergabe.de
Dismissed Targets(15): kopenhagen.diplo.de, canada.diplo.de, helsinki.diplo.de, dublin.diplo.de, italien.diplo.de, bruessel.diplo.de, riga.diplo.de, sofia.diplo.de, reykjavik.diplo.de, uk.diplo.de, japan.diplo.de, allemagneenfrance.diplo.de, griechenland.diplo.de, australien.diplo.de, tallinn.diplo.de
New Targets(0):
Targets from prev attack(17): www.tangermuende.de, finanzamt.hessen.de, www.bkport.com, www.tangerhuette.de, support.cosinex.de, www.kaiserslautern.de, doc.bkport.com, www.evergabe-mv.de, v.bkport.com, www.naumburg.de, www.wanzleben-boerde.de, login.evergabe.de, www.nowycasnik.de, erouter.bkport.com, www.limbach-oberfrohna.de, www.zwickau.de, www.evergabe.de
Dismissed Targets(15): kopenhagen.diplo.de, canada.diplo.de, helsinki.diplo.de, dublin.diplo.de, italien.diplo.de, bruessel.diplo.de, riga.diplo.de, sofia.diplo.de, reykjavik.diplo.de, uk.diplo.de, japan.diplo.de, allemagneenfrance.diplo.de, griechenland.diplo.de, australien.diplo.de, tallinn.diplo.de
2026-07-08_10-10-09
The attacks by noname057 primarily target government and municipal websites from various countries, including Germany, Italy, Greece, the UK, Canada, Japan, Iceland, Estonia, and Australia. Notable sites attacked include diplomatic missions and local government portals, indicating a focus on disrupting official communications and services.AI generated32 targets are under attack, 0 new targets and 32 targets from previous attack
New Targets(0):
Targets from prev attack(32): italien.diplo.de, www.naumburg.de, griechenland.diplo.de, uk.diplo.de, www.wanzleben-boerde.de, reykjavik.diplo.de, japan.diplo.de, tallinn.diplo.de, www.evergabe.de, www.zwickau.de, canada.diplo.de, finanzamt.hessen.de, kopenhagen.diplo.de, dublin.diplo.de, www.limbach-oberfrohna.de, www.tangermuende.de, www.bkport.com, riga.diplo.de, www.nowycasnik.de, doc.bkport.com, erouter.bkport.com, helsinki.diplo.de, login.evergabe.de, www.kaiserslautern.de, www.evergabe-mv.de, bruessel.diplo.de, australien.diplo.de, allemagneenfrance.diplo.de, v.bkport.com, support.cosinex.de, sofia.diplo.de, www.tangerhuette.de
Dismissed Targets(9): euroterminal.ua, uni-laman.com, de2.uni-laman.com, de1.uni-laman.com, md.uni-laman.com, unsc.com.ua, de.uni-laman.com, clients.euroterminal.ua, de4.uni-laman.com
New Targets(0):
Targets from prev attack(32): italien.diplo.de, www.naumburg.de, griechenland.diplo.de, uk.diplo.de, www.wanzleben-boerde.de, reykjavik.diplo.de, japan.diplo.de, tallinn.diplo.de, www.evergabe.de, www.zwickau.de, canada.diplo.de, finanzamt.hessen.de, kopenhagen.diplo.de, dublin.diplo.de, www.limbach-oberfrohna.de, www.tangermuende.de, www.bkport.com, riga.diplo.de, www.nowycasnik.de, doc.bkport.com, erouter.bkport.com, helsinki.diplo.de, login.evergabe.de, www.kaiserslautern.de, www.evergabe-mv.de, bruessel.diplo.de, australien.diplo.de, allemagneenfrance.diplo.de, v.bkport.com, support.cosinex.de, sofia.diplo.de, www.tangerhuette.de
Dismissed Targets(9): euroterminal.ua, uni-laman.com, de2.uni-laman.com, de1.uni-laman.com, md.uni-laman.com, unsc.com.ua, de.uni-laman.com, clients.euroterminal.ua, de4.uni-laman.com
2026-07-08_10-05-08
The cyber attacks attributed to noname057(16) have primarily targeted websites from several countries, including Germany, Italy, Greece, Canada, Japan, Estonia, Iceland, Denmark, Ireland, and Australia. The attacks have affected a range of government and educational institutions, highlighting a focus on diplomatic and public service sectors.AI generated41 targets are under attack, 12 new targets and 29 targets from previous attack
New Targets(12): www.nowycasnik.de, www.naumburg.de, doc.bkport.com, erouter.bkport.com, www.wanzleben-boerde.de, v.bkport.com, www.limbach-oberfrohna.de, www.tangermuende.de, www.kaiserslautern.de, www.zwickau.de, www.bkport.com, www.tangerhuette.de
Targets from prev attack(29): italien.diplo.de, griechenland.diplo.de, de1.uni-laman.com, uk.diplo.de, reykjavik.diplo.de, japan.diplo.de, tallinn.diplo.de, www.evergabe.de, clients.euroterminal.ua, canada.diplo.de, de2.uni-laman.com, finanzamt.hessen.de, kopenhagen.diplo.de, dublin.diplo.de, riga.diplo.de, euroterminal.ua, uni-laman.com, helsinki.diplo.de, login.evergabe.de, md.uni-laman.com, www.evergabe-mv.de, bruessel.diplo.de, australien.diplo.de, allemagneenfrance.diplo.de, unsc.com.ua, support.cosinex.de, de.uni-laman.com, sofia.diplo.de, de4.uni-laman.com
Dismissed Targets(0):
New Targets(12): www.nowycasnik.de, www.naumburg.de, doc.bkport.com, erouter.bkport.com, www.wanzleben-boerde.de, v.bkport.com, www.limbach-oberfrohna.de, www.tangermuende.de, www.kaiserslautern.de, www.zwickau.de, www.bkport.com, www.tangerhuette.de
Targets from prev attack(29): italien.diplo.de, griechenland.diplo.de, de1.uni-laman.com, uk.diplo.de, reykjavik.diplo.de, japan.diplo.de, tallinn.diplo.de, www.evergabe.de, clients.euroterminal.ua, canada.diplo.de, de2.uni-laman.com, finanzamt.hessen.de, kopenhagen.diplo.de, dublin.diplo.de, riga.diplo.de, euroterminal.ua, uni-laman.com, helsinki.diplo.de, login.evergabe.de, md.uni-laman.com, www.evergabe-mv.de, bruessel.diplo.de, australien.diplo.de, allemagneenfrance.diplo.de, unsc.com.ua, support.cosinex.de, de.uni-laman.com, sofia.diplo.de, de4.uni-laman.com
Dismissed Targets(0):
2026-07-08_08-05-08
The attacks attributed to noname057 primarily target diplomatic and governmental websites across various countries. The main countries under attack include Japan, Germany, Greece, Italy, Canada, Ireland, Finland, Estonia, Australia, and Ukraine. The incidents highlight a focus on both European and non-European nations, indicating a broad scope of interest in governmental cyber infrastructure.AI generated29 targets are under attack, 20 new targets and 9 targets from previous attack
New Targets(20): japan.diplo.de, www.evergabe-mv.de, griechenland.diplo.de, italien.diplo.de, dublin.diplo.de, bruessel.diplo.de, reykjavik.diplo.de, kopenhagen.diplo.de, canada.diplo.de, uk.diplo.de, sofia.diplo.de, www.evergabe.de, login.evergabe.de, support.cosinex.de, finanzamt.hessen.de, helsinki.diplo.de, tallinn.diplo.de, australien.diplo.de, allemagneenfrance.diplo.de, riga.diplo.de
Targets from prev attack(9): de1.uni-laman.com, de.uni-laman.com, de4.uni-laman.com, uni-laman.com, md.uni-laman.com, unsc.com.ua, clients.euroterminal.ua, de2.uni-laman.com, euroterminal.ua
Dismissed Targets(18): frontend-api.sbahn-hannover.de, www.vrt-info.de, www.bafin.de, www.hellmann.com, portal.mvp.bafin.de, www.saarvv.de, www.l.de, www.rvm-online.de, www.dachser.com, www.nwl-info.de, avv.de, www.bvl.de, shop.sternundkreis.de, www.nasa.de, www.sbahn-hannover.de, www.vms.de, www.vrn.de, www.nah.sh
New Targets(20): japan.diplo.de, www.evergabe-mv.de, griechenland.diplo.de, italien.diplo.de, dublin.diplo.de, bruessel.diplo.de, reykjavik.diplo.de, kopenhagen.diplo.de, canada.diplo.de, uk.diplo.de, sofia.diplo.de, www.evergabe.de, login.evergabe.de, support.cosinex.de, finanzamt.hessen.de, helsinki.diplo.de, tallinn.diplo.de, australien.diplo.de, allemagneenfrance.diplo.de, riga.diplo.de
Targets from prev attack(9): de1.uni-laman.com, de.uni-laman.com, de4.uni-laman.com, uni-laman.com, md.uni-laman.com, unsc.com.ua, clients.euroterminal.ua, de2.uni-laman.com, euroterminal.ua
Dismissed Targets(18): frontend-api.sbahn-hannover.de, www.vrt-info.de, www.bafin.de, www.hellmann.com, portal.mvp.bafin.de, www.saarvv.de, www.l.de, www.rvm-online.de, www.dachser.com, www.nwl-info.de, avv.de, www.bvl.de, shop.sternundkreis.de, www.nasa.de, www.sbahn-hannover.de, www.vms.de, www.vrn.de, www.nah.sh
2026-07-07_08-05-08
The websites attacked by noname057 include a range of organizations primarily located in Germany and Ukraine. Key sectors affected involve transportation, logistics, finance, and education. Notable countries under attack are Germany, with multiple sites like saarvv.de and hellmann.com, and Ukraine, represented by euroterminal.ua and unsc.com.ua. The attacks highlight vulnerabilities in critical infrastructure and services across these regions.AI generated27 targets are under attack, 18 new targets and 9 targets from previous attack
New Targets(18): www.saarvv.de, www.nwl-info.de, shop.sternundkreis.de, www.vrn.de, www.hellmann.com, portal.mvp.bafin.de, www.sbahn-hannover.de, www.nah.sh, www.bafin.de, www.vrt-info.de, frontend-api.sbahn-hannover.de, www.bvl.de, www.dachser.com, avv.de, www.vms.de, www.l.de, www.nasa.de, www.rvm-online.de
Targets from prev attack(9): de.uni-laman.com, de4.uni-laman.com, euroterminal.ua, uni-laman.com, clients.euroterminal.ua, unsc.com.ua, de1.uni-laman.com, de2.uni-laman.com, md.uni-laman.com
Dismissed Targets(31): www.nowycasnik.de, www.bkms-system.net, www.destatis.de, www.wanzleben-boerde.de, www.limbach-oberfrohna.de, www.boerse-berlin.com, yuzhmash.com, www.ism.kiev.ua, lansys.com.ua, www.vg-arendsee-kalbe.de, www.tangerhuette.de, www.tangermuende.de, verwaltung.bund.de, merydian.kiev.ua, www.gladbeck.de, temp3000.com, www.bode-holtemme.de, bayvebe.bayern.de, stiftung-moritzburg.de, www.azot.com.ua, www.naumburg.de, www.materials.kiev.ua, roboneers.net, www.koethen-anhalt.de, www.orion.te.ua, www.zwickau.de, pribor.zp.ua, www.erfurt.de, www.autokraz.com.ua, www.kreis-oh.de, www.kaiserslautern.de
New Targets(18): www.saarvv.de, www.nwl-info.de, shop.sternundkreis.de, www.vrn.de, www.hellmann.com, portal.mvp.bafin.de, www.sbahn-hannover.de, www.nah.sh, www.bafin.de, www.vrt-info.de, frontend-api.sbahn-hannover.de, www.bvl.de, www.dachser.com, avv.de, www.vms.de, www.l.de, www.nasa.de, www.rvm-online.de
Targets from prev attack(9): de.uni-laman.com, de4.uni-laman.com, euroterminal.ua, uni-laman.com, clients.euroterminal.ua, unsc.com.ua, de1.uni-laman.com, de2.uni-laman.com, md.uni-laman.com
Dismissed Targets(31): www.nowycasnik.de, www.bkms-system.net, www.destatis.de, www.wanzleben-boerde.de, www.limbach-oberfrohna.de, www.boerse-berlin.com, yuzhmash.com, www.ism.kiev.ua, lansys.com.ua, www.vg-arendsee-kalbe.de, www.tangerhuette.de, www.tangermuende.de, verwaltung.bund.de, merydian.kiev.ua, www.gladbeck.de, temp3000.com, www.bode-holtemme.de, bayvebe.bayern.de, stiftung-moritzburg.de, www.azot.com.ua, www.naumburg.de, www.materials.kiev.ua, roboneers.net, www.koethen-anhalt.de, www.orion.te.ua, www.zwickau.de, pribor.zp.ua, www.erfurt.de, www.autokraz.com.ua, www.kreis-oh.de, www.kaiserslautern.de
2026-07-06_12-10-07
The attacks attributed to noname057 primarily target websites in Germany and Ukraine. Key German cities affected include Gladbeck, Erfurt, Kaiserslautern, and Zwickau, while Ukrainian targets include various institutions and businesses in Kyiv, Zaporizhzhia, and other regions. The attacks highlight a significant focus on both governmental and private sectors in these countries.AI generated40 targets are under attack, 11 new targets and 29 targets from previous attack
New Targets(11): temp3000.com, www.autokraz.com.ua, roboneers.net, www.ism.kiev.ua, lansys.com.ua, www.azot.com.ua, www.materials.kiev.ua, yuzhmash.com, merydian.kiev.ua, www.orion.te.ua, pribor.zp.ua
Targets from prev attack(29): www.gladbeck.de, unsc.com.ua, www.erfurt.de, www.destatis.de, verwaltung.bund.de, clients.euroterminal.ua, www.vg-arendsee-kalbe.de, www.tangerhuette.de, de2.uni-laman.com, www.wanzleben-boerde.de, stiftung-moritzburg.de, www.bkms-system.net, www.kaiserslautern.de, www.boerse-berlin.com, www.limbach-oberfrohna.de, www.naumburg.de, de4.uni-laman.com, www.zwickau.de, www.kreis-oh.de, uni-laman.com, de1.uni-laman.com, bayvebe.bayern.de, www.bode-holtemme.de, md.uni-laman.com, www.nowycasnik.de, de.uni-laman.com, www.koethen-anhalt.de, euroterminal.ua, www.tangermuende.de
Dismissed Targets(0):
New Targets(11): temp3000.com, www.autokraz.com.ua, roboneers.net, www.ism.kiev.ua, lansys.com.ua, www.azot.com.ua, www.materials.kiev.ua, yuzhmash.com, merydian.kiev.ua, www.orion.te.ua, pribor.zp.ua
Targets from prev attack(29): www.gladbeck.de, unsc.com.ua, www.erfurt.de, www.destatis.de, verwaltung.bund.de, clients.euroterminal.ua, www.vg-arendsee-kalbe.de, www.tangerhuette.de, de2.uni-laman.com, www.wanzleben-boerde.de, stiftung-moritzburg.de, www.bkms-system.net, www.kaiserslautern.de, www.boerse-berlin.com, www.limbach-oberfrohna.de, www.naumburg.de, de4.uni-laman.com, www.zwickau.de, www.kreis-oh.de, uni-laman.com, de1.uni-laman.com, bayvebe.bayern.de, www.bode-holtemme.de, md.uni-laman.com, www.nowycasnik.de, de.uni-laman.com, www.koethen-anhalt.de, euroterminal.ua, www.tangermuende.de
Dismissed Targets(0):
2026-07-06_10-10-07
The attacks attributed to noname057 primarily targeted websites in Germany, with notable attacks on municipal and educational institutions. Additionally, there were attempts on sites in Ukraine, indicating a focus on both German and Ukrainian entities. The attacks highlight a trend of targeting local government and educational organizations in these countries.AI generated29 targets are under attack, 0 new targets and 29 targets from previous attack
New Targets(0):
Targets from prev attack(29): www.erfurt.de, md.uni-laman.com, www.zwickau.de, www.vg-arendsee-kalbe.de, www.tangermuende.de, www.limbach-oberfrohna.de, stiftung-moritzburg.de, www.naumburg.de, de.uni-laman.com, www.nowycasnik.de, clients.euroterminal.ua, euroterminal.ua, www.bode-holtemme.de, unsc.com.ua, de4.uni-laman.com, de2.uni-laman.com, verwaltung.bund.de, uni-laman.com, www.boerse-berlin.com, www.koethen-anhalt.de, de1.uni-laman.com, www.kreis-oh.de, bayvebe.bayern.de, www.wanzleben-boerde.de, www.bkms-system.net, www.tangerhuette.de, www.destatis.de, www.gladbeck.de, www.kaiserslautern.de
Dismissed Targets(0):
New Targets(0):
Targets from prev attack(29): www.erfurt.de, md.uni-laman.com, www.zwickau.de, www.vg-arendsee-kalbe.de, www.tangermuende.de, www.limbach-oberfrohna.de, stiftung-moritzburg.de, www.naumburg.de, de.uni-laman.com, www.nowycasnik.de, clients.euroterminal.ua, euroterminal.ua, www.bode-holtemme.de, unsc.com.ua, de4.uni-laman.com, de2.uni-laman.com, verwaltung.bund.de, uni-laman.com, www.boerse-berlin.com, www.koethen-anhalt.de, de1.uni-laman.com, www.kreis-oh.de, bayvebe.bayern.de, www.wanzleben-boerde.de, www.bkms-system.net, www.tangerhuette.de, www.destatis.de, www.gladbeck.de, www.kaiserslautern.de
Dismissed Targets(0):
2026-07-06_10-05-07
The attacks attributed to noname057 primarily target websites in Germany, with a significant focus on local government and educational institutions. Other affected countries include Ukraine, as evidenced by attacks on Ukrainian sites. The majority of the targeted domains reflect a concentration in the German region, indicating a strategic interest in disrupting local services and information.AI generated29 targets are under attack, 9 new targets and 20 targets from previous attack
New Targets(9): md.uni-laman.com, unsc.com.ua, de4.uni-laman.com, de2.uni-laman.com, uni-laman.com, de1.uni-laman.com, de.uni-laman.com, clients.euroterminal.ua, euroterminal.ua
Targets from prev attack(20): www.erfurt.de, www.zwickau.de, www.vg-arendsee-kalbe.de, www.tangermuende.de, www.limbach-oberfrohna.de, stiftung-moritzburg.de, www.naumburg.de, www.nowycasnik.de, www.bode-holtemme.de, verwaltung.bund.de, www.boerse-berlin.com, www.koethen-anhalt.de, www.kreis-oh.de, bayvebe.bayern.de, www.bkms-system.net, www.wanzleben-boerde.de, www.tangerhuette.de, www.destatis.de, www.gladbeck.de, www.kaiserslautern.de
Dismissed Targets(10): mail.seagate.com.ua, help.gol.ua, koleso-logistics.com, mail.gol.ua, graincomshipping.com, cbl.com.ua, my.koleso-logistics.com, trackmybox.gol.ua, rastamozhka.com, client.seagate.com.ua
New Targets(9): md.uni-laman.com, unsc.com.ua, de4.uni-laman.com, de2.uni-laman.com, uni-laman.com, de1.uni-laman.com, de.uni-laman.com, clients.euroterminal.ua, euroterminal.ua
Targets from prev attack(20): www.erfurt.de, www.zwickau.de, www.vg-arendsee-kalbe.de, www.tangermuende.de, www.limbach-oberfrohna.de, stiftung-moritzburg.de, www.naumburg.de, www.nowycasnik.de, www.bode-holtemme.de, verwaltung.bund.de, www.boerse-berlin.com, www.koethen-anhalt.de, www.kreis-oh.de, bayvebe.bayern.de, www.bkms-system.net, www.wanzleben-boerde.de, www.tangerhuette.de, www.destatis.de, www.gladbeck.de, www.kaiserslautern.de
Dismissed Targets(10): mail.seagate.com.ua, help.gol.ua, koleso-logistics.com, mail.gol.ua, graincomshipping.com, cbl.com.ua, my.koleso-logistics.com, trackmybox.gol.ua, rastamozhka.com, client.seagate.com.ua
2026-07-06_08-05-07
The recent attacks attributed to noname057 primarily targeted websites in Germany and Ukraine. Key countries under attack include Germany, with numerous local government and community sites affected, and Ukraine, which saw attacks on various mail services and logistics platforms.AI generated30 targets are under attack, 20 new targets and 10 targets from previous attack
New Targets(20): www.wanzleben-boerde.de, www.gladbeck.de, verwaltung.bund.de, www.nowycasnik.de, www.kaiserslautern.de, www.zwickau.de, www.naumburg.de, www.tangermuende.de, stiftung-moritzburg.de, www.vg-arendsee-kalbe.de, www.boerse-berlin.com, www.kreis-oh.de, www.koethen-anhalt.de, www.limbach-oberfrohna.de, www.destatis.de, bayvebe.bayern.de, www.bkms-system.net, www.bode-holtemme.de, www.erfurt.de, www.tangerhuette.de
Targets from prev attack(10): graincomshipping.com, cbl.com.ua, rastamozhka.com, koleso-logistics.com, client.seagate.com.ua, my.koleso-logistics.com, help.gol.ua, trackmybox.gol.ua, mail.gol.ua, mail.seagate.com.ua
Dismissed Targets(9): talismann.online, www.poland.travel, powiat.krakow.pl, www.kylos.pl, ezamowienia.gov.pl, panel.kylos.pl, www.malopolskie.pl, www.geoportal.gov.pl, strefaklienta.atman.pl
New Targets(20): www.wanzleben-boerde.de, www.gladbeck.de, verwaltung.bund.de, www.nowycasnik.de, www.kaiserslautern.de, www.zwickau.de, www.naumburg.de, www.tangermuende.de, stiftung-moritzburg.de, www.vg-arendsee-kalbe.de, www.boerse-berlin.com, www.kreis-oh.de, www.koethen-anhalt.de, www.limbach-oberfrohna.de, www.destatis.de, bayvebe.bayern.de, www.bkms-system.net, www.bode-holtemme.de, www.erfurt.de, www.tangerhuette.de
Targets from prev attack(10): graincomshipping.com, cbl.com.ua, rastamozhka.com, koleso-logistics.com, client.seagate.com.ua, my.koleso-logistics.com, help.gol.ua, trackmybox.gol.ua, mail.gol.ua, mail.seagate.com.ua
Dismissed Targets(9): talismann.online, www.poland.travel, powiat.krakow.pl, www.kylos.pl, ezamowienia.gov.pl, panel.kylos.pl, www.malopolskie.pl, www.geoportal.gov.pl, strefaklienta.atman.pl
2026-07-05_08-10-07
The attacks attributed to noname057(16) primarily target websites in Ukraine and Poland. Key sectors affected include logistics, government services, and tourism, highlighting a focus on critical infrastructure and public services in these countries.AI generated19 targets are under attack, 9 new targets and 10 targets from previous attack
New Targets(9): strefaklienta.atman.pl, www.poland.travel, www.geoportal.gov.pl, powiat.krakow.pl, ezamowienia.gov.pl, talismann.online, panel.kylos.pl, www.kylos.pl, www.malopolskie.pl
Targets from prev attack(10): cbl.com.ua, rastamozhka.com, mail.seagate.com.ua, koleso-logistics.com, graincomshipping.com, mail.gol.ua, help.gol.ua, client.seagate.com.ua, trackmybox.gol.ua, my.koleso-logistics.com
Dismissed Targets(10): www.gamrat.pl, www.ewgt.com.pl, 4brokernet.gpw.pl, www.bondspot.pl, www.etop.pl, telesystem.eu, www.play.pl, 4bondnet.bondspot.pl, www.maskpol.com.pl, discover-poland.pl
New Targets(9): strefaklienta.atman.pl, www.poland.travel, www.geoportal.gov.pl, powiat.krakow.pl, ezamowienia.gov.pl, talismann.online, panel.kylos.pl, www.kylos.pl, www.malopolskie.pl
Targets from prev attack(10): cbl.com.ua, rastamozhka.com, mail.seagate.com.ua, koleso-logistics.com, graincomshipping.com, mail.gol.ua, help.gol.ua, client.seagate.com.ua, trackmybox.gol.ua, my.koleso-logistics.com
Dismissed Targets(10): www.gamrat.pl, www.ewgt.com.pl, 4brokernet.gpw.pl, www.bondspot.pl, www.etop.pl, telesystem.eu, www.play.pl, 4bondnet.bondspot.pl, www.maskpol.com.pl, discover-poland.pl
2026-07-04_08-05-15
The attacks attributed to noname057(16) primarily targeted websites in Ukraine and Poland. Key sectors affected include logistics, shipping, and technology, with notable sites such as mail.seagate.com.ua and www.etop.pl being compromised. The attacks highlight a significant focus on Ukrainian infrastructure and Polish online services.AI generated20 targets are under attack, 10 new targets and 10 targets from previous attack
New Targets(10): www.bondspot.pl, telesystem.eu, discover-poland.pl, 4bondnet.bondspot.pl, www.etop.pl, www.maskpol.com.pl, www.ewgt.com.pl, 4brokernet.gpw.pl, www.gamrat.pl, www.play.pl
Targets from prev attack(10): mail.seagate.com.ua, mail.gol.ua, help.gol.ua, client.seagate.com.ua, my.koleso-logistics.com, rastamozhka.com, koleso-logistics.com, graincomshipping.com, cbl.com.ua, trackmybox.gol.ua
Dismissed Targets(35): home.l4.ua, www.focushotels.pl, www.powiat.kielce.pl, megaprostir.net, elta.com.pl, ir.focushotels.pl, stomil-bydgoszcz.pl, www.wakacje.pl, online.sumy.ua, 1login.wp.pl, www.powiat-olsztynski.pl, zbx.skm.com.ua, phh.pl, skm.com.ua, www.mesko.com.pl, www.czestochowa.pl, www.kielce.uw.gov.pl, www.sosnowiec.pl, www.pitradwar.com, szczecin.eu, powiat.poznan.pl, www.slaskie.pl, www.poznan.pl, www.shtorm.net, z.skm.com.ua, polishdefenceindustry.gov.pl, www.golebiewski.pl, tks.sumy.ua, www.abw.gov.pl, www.poznan.uw.gov.pl, www.kielce.eu, pcosa.com.pl, sitv.com.ua, l4.ua, triolan.com
New Targets(10): www.bondspot.pl, telesystem.eu, discover-poland.pl, 4bondnet.bondspot.pl, www.etop.pl, www.maskpol.com.pl, www.ewgt.com.pl, 4brokernet.gpw.pl, www.gamrat.pl, www.play.pl
Targets from prev attack(10): mail.seagate.com.ua, mail.gol.ua, help.gol.ua, client.seagate.com.ua, my.koleso-logistics.com, rastamozhka.com, koleso-logistics.com, graincomshipping.com, cbl.com.ua, trackmybox.gol.ua
Dismissed Targets(35): home.l4.ua, www.focushotels.pl, www.powiat.kielce.pl, megaprostir.net, elta.com.pl, ir.focushotels.pl, stomil-bydgoszcz.pl, www.wakacje.pl, online.sumy.ua, 1login.wp.pl, www.powiat-olsztynski.pl, zbx.skm.com.ua, phh.pl, skm.com.ua, www.mesko.com.pl, www.czestochowa.pl, www.kielce.uw.gov.pl, www.sosnowiec.pl, www.pitradwar.com, szczecin.eu, powiat.poznan.pl, www.slaskie.pl, www.poznan.pl, www.shtorm.net, z.skm.com.ua, polishdefenceindustry.gov.pl, www.golebiewski.pl, tks.sumy.ua, www.abw.gov.pl, www.poznan.uw.gov.pl, www.kielce.eu, pcosa.com.pl, sitv.com.ua, l4.ua, triolan.com
2026-07-03_12-10-09
The cyber attacks attributed to noname057 primarily target websites in Ukraine and Poland. Key sectors affected include logistics, government services, and hospitality. Notable Ukrainian domains include z.skm.com.ua and tks.sumy.ua, while Polish sites like www.kielce.eu and www.powiat-olsztynski.pl are also significant targets. The attacks highlight a focus on critical infrastructure and public services in these countries.AI generated45 targets are under attack, 11 new targets and 34 targets from previous attack
New Targets(11): megaprostir.net, triolan.com, online.sumy.ua, sitv.com.ua, z.skm.com.ua, skm.com.ua, tks.sumy.ua, www.shtorm.net, home.l4.ua, l4.ua, zbx.skm.com.ua
Targets from prev attack(34): client.seagate.com.ua, 1login.wp.pl, mail.gol.ua, graincomshipping.com, rastamozhka.com, www.kielce.eu, koleso-logistics.com, help.gol.ua, www.kielce.uw.gov.pl, phh.pl, trackmybox.gol.ua, www.focushotels.pl, www.powiat-olsztynski.pl, www.slaskie.pl, www.golebiewski.pl, polishdefenceindustry.gov.pl, www.poznan.pl, www.pitradwar.com, mail.seagate.com.ua, pcosa.com.pl, www.czestochowa.pl, stomil-bydgoszcz.pl, ir.focushotels.pl, powiat.poznan.pl, www.powiat.kielce.pl, www.mesko.com.pl, szczecin.eu, www.sosnowiec.pl, my.koleso-logistics.com, www.poznan.uw.gov.pl, elta.com.pl, cbl.com.ua, www.wakacje.pl, www.abw.gov.pl
Dismissed Targets(0):
New Targets(11): megaprostir.net, triolan.com, online.sumy.ua, sitv.com.ua, z.skm.com.ua, skm.com.ua, tks.sumy.ua, www.shtorm.net, home.l4.ua, l4.ua, zbx.skm.com.ua
Targets from prev attack(34): client.seagate.com.ua, 1login.wp.pl, mail.gol.ua, graincomshipping.com, rastamozhka.com, www.kielce.eu, koleso-logistics.com, help.gol.ua, www.kielce.uw.gov.pl, phh.pl, trackmybox.gol.ua, www.focushotels.pl, www.powiat-olsztynski.pl, www.slaskie.pl, www.golebiewski.pl, polishdefenceindustry.gov.pl, www.poznan.pl, www.pitradwar.com, mail.seagate.com.ua, pcosa.com.pl, www.czestochowa.pl, stomil-bydgoszcz.pl, ir.focushotels.pl, powiat.poznan.pl, www.powiat.kielce.pl, www.mesko.com.pl, szczecin.eu, www.sosnowiec.pl, my.koleso-logistics.com, www.poznan.uw.gov.pl, elta.com.pl, cbl.com.ua, www.wakacje.pl, www.abw.gov.pl
Dismissed Targets(0):
2026-07-03_10-15-07
The attacks attributed to noname057 primarily target websites in Poland and Ukraine. Key sectors affected include government, tourism, logistics, and defense industries. Major cities under attack include Poznań, Częstochowa, Kielce, and Szczecin, alongside various online services and platforms.AI generated34 targets are under attack, 1 new targets and 33 targets from previous attack
New Targets(1): trackmybox.gol.ua
Targets from prev attack(33): www.abw.gov.pl, client.seagate.com.ua, www.poznan.pl, www.czestochowa.pl, help.gol.ua, ir.focushotels.pl, 1login.wp.pl, mail.seagate.com.ua, www.kielce.eu, www.slaskie.pl, rastamozhka.com, pcosa.com.pl, stomil-bydgoszcz.pl, www.mesko.com.pl, elta.com.pl, www.wakacje.pl, mail.gol.ua, powiat.poznan.pl, koleso-logistics.com, polishdefenceindustry.gov.pl, graincomshipping.com, www.powiat-olsztynski.pl, www.pitradwar.com, cbl.com.ua, www.powiat.kielce.pl, phh.pl, www.poznan.uw.gov.pl, www.sosnowiec.pl, szczecin.eu, my.koleso-logistics.com, www.focushotels.pl, www.golebiewski.pl, www.kielce.uw.gov.pl
Dismissed Targets(0):
New Targets(1): trackmybox.gol.ua
Targets from prev attack(33): www.abw.gov.pl, client.seagate.com.ua, www.poznan.pl, www.czestochowa.pl, help.gol.ua, ir.focushotels.pl, 1login.wp.pl, mail.seagate.com.ua, www.kielce.eu, www.slaskie.pl, rastamozhka.com, pcosa.com.pl, stomil-bydgoszcz.pl, www.mesko.com.pl, elta.com.pl, www.wakacje.pl, mail.gol.ua, powiat.poznan.pl, koleso-logistics.com, polishdefenceindustry.gov.pl, graincomshipping.com, www.powiat-olsztynski.pl, www.pitradwar.com, cbl.com.ua, www.powiat.kielce.pl, phh.pl, www.poznan.uw.gov.pl, www.sosnowiec.pl, szczecin.eu, my.koleso-logistics.com, www.focushotels.pl, www.golebiewski.pl, www.kielce.uw.gov.pl
Dismissed Targets(0):
2026-07-03_10-10-10
The attacks attributed to noname057 primarily target websites in Poland and Ukraine. Key sectors affected include government, logistics, hospitality, and defense industries. The main cities under attack include Kielce, Poznań, Szczecin, Częstochowa, and Bydgoszcz in Poland, along with various Ukrainian cities.AI generated33 targets are under attack, 9 new targets and 24 targets from previous attack
New Targets(9): help.gol.ua, mail.seagate.com.ua, cbl.com.ua, koleso-logistics.com, rastamozhka.com, graincomshipping.com, client.seagate.com.ua, mail.gol.ua, my.koleso-logistics.com
Targets from prev attack(24): www.kielce.uw.gov.pl, www.golebiewski.pl, www.poznan.uw.gov.pl, pcosa.com.pl, www.powiat.kielce.pl, www.focushotels.pl, szczecin.eu, elta.com.pl, ir.focushotels.pl, www.pitradwar.com, www.slaskie.pl, www.czestochowa.pl, www.abw.gov.pl, www.mesko.com.pl, www.powiat-olsztynski.pl, www.wakacje.pl, 1login.wp.pl, www.sosnowiec.pl, powiat.poznan.pl, polishdefenceindustry.gov.pl, www.kielce.eu, stomil-bydgoszcz.pl, phh.pl, www.poznan.pl
Dismissed Targets(0):
New Targets(9): help.gol.ua, mail.seagate.com.ua, cbl.com.ua, koleso-logistics.com, rastamozhka.com, graincomshipping.com, client.seagate.com.ua, mail.gol.ua, my.koleso-logistics.com
Targets from prev attack(24): www.kielce.uw.gov.pl, www.golebiewski.pl, www.poznan.uw.gov.pl, pcosa.com.pl, www.powiat.kielce.pl, www.focushotels.pl, szczecin.eu, elta.com.pl, ir.focushotels.pl, www.pitradwar.com, www.slaskie.pl, www.czestochowa.pl, www.abw.gov.pl, www.mesko.com.pl, www.powiat-olsztynski.pl, www.wakacje.pl, 1login.wp.pl, www.sosnowiec.pl, powiat.poznan.pl, polishdefenceindustry.gov.pl, www.kielce.eu, stomil-bydgoszcz.pl, phh.pl, www.poznan.pl
Dismissed Targets(0):
2026-07-03_08-10-07
Recent attacks attributed to the group noname057(16) have primarily targeted websites in Poland. Key cities affected include Bydgoszcz, Szczecin, Kielce, Częstochowa, Poznań, and Sosnowiec. The attacks have impacted various sectors, including government, defense, tourism, and hospitality, highlighting a significant focus on Polish institutions and businesses.AI generated24 targets are under attack, 0 new targets and 24 targets from previous attack
New Targets(0):
Targets from prev attack(24): stomil-bydgoszcz.pl, szczecin.eu, www.abw.gov.pl, www.kielce.eu, www.czestochowa.pl, www.powiat.kielce.pl, www.kielce.uw.gov.pl, www.pitradwar.com, powiat.poznan.pl, www.sosnowiec.pl, phh.pl, 1login.wp.pl, www.poznan.pl, polishdefenceindustry.gov.pl, elta.com.pl, www.mesko.com.pl, www.wakacje.pl, www.golebiewski.pl, www.poznan.uw.gov.pl, ir.focushotels.pl, www.slaskie.pl, pcosa.com.pl, www.powiat-olsztynski.pl, www.focushotels.pl
Dismissed Targets(30): www.aftermarket.pl, cba.pl, powiat.krakow.pl, www.netart.com, www.malopolskie.pl, ogs.omr.gov.ua, billing.talismann.online, panel.kylos.pl, www.krakow.pl, cyberfolks.pl, www.iq.pl, openhost.pl, talismann.online, www.kylos.pl, poczta.domena.pl, torg.omr.gov.ua, carparking.omr.gov.ua, omr.gov.ua, citizen.omr.gov.ua, mail.dpsp-omr.odessa.ua, www.domena.pl, www.powiat.zgierz.pl, finance-dzr.omr.gov.ua, deputat.omr.gov.ua, www.miasto.zgierz.pl, my.omr.gov.ua, odesa365.omr.gov.ua, strefaklienta.atman.pl, webd.pl, greencity.omr.gov.ua
New Targets(0):
Targets from prev attack(24): stomil-bydgoszcz.pl, szczecin.eu, www.abw.gov.pl, www.kielce.eu, www.czestochowa.pl, www.powiat.kielce.pl, www.kielce.uw.gov.pl, www.pitradwar.com, powiat.poznan.pl, www.sosnowiec.pl, phh.pl, 1login.wp.pl, www.poznan.pl, polishdefenceindustry.gov.pl, elta.com.pl, www.mesko.com.pl, www.wakacje.pl, www.golebiewski.pl, www.poznan.uw.gov.pl, ir.focushotels.pl, www.slaskie.pl, pcosa.com.pl, www.powiat-olsztynski.pl, www.focushotels.pl
Dismissed Targets(30): www.aftermarket.pl, cba.pl, powiat.krakow.pl, www.netart.com, www.malopolskie.pl, ogs.omr.gov.ua, billing.talismann.online, panel.kylos.pl, www.krakow.pl, cyberfolks.pl, www.iq.pl, openhost.pl, talismann.online, www.kylos.pl, poczta.domena.pl, torg.omr.gov.ua, carparking.omr.gov.ua, omr.gov.ua, citizen.omr.gov.ua, mail.dpsp-omr.odessa.ua, www.domena.pl, www.powiat.zgierz.pl, finance-dzr.omr.gov.ua, deputat.omr.gov.ua, www.miasto.zgierz.pl, my.omr.gov.ua, odesa365.omr.gov.ua, strefaklienta.atman.pl, webd.pl, greencity.omr.gov.ua
2026-07-03_08-05-08
The attacks by noname057 primarily target websites in Poland and Ukraine. Key sectors affected include local government sites, tourism, and various online services. Notable cities under attack include Poznań, Kraków, and Odesa, highlighting a significant focus on both public administration and private enterprises in these regions.AI generated54 targets are under attack, 24 new targets and 30 targets from previous attack
New Targets(24): powiat.poznan.pl, www.powiat.kielce.pl, www.pitradwar.com, www.golebiewski.pl, www.mesko.com.pl, www.poznan.pl, phh.pl, polishdefenceindustry.gov.pl, www.focushotels.pl, www.wakacje.pl, elta.com.pl, www.sosnowiec.pl, www.powiat-olsztynski.pl, szczecin.eu, www.kielce.uw.gov.pl, pcosa.com.pl, 1login.wp.pl, www.poznan.uw.gov.pl, stomil-bydgoszcz.pl, ir.focushotels.pl, www.czestochowa.pl, www.slaskie.pl, www.kielce.eu, www.abw.gov.pl
Targets from prev attack(30): talismann.online, www.miasto.zgierz.pl, citizen.omr.gov.ua, www.domena.pl, odesa365.omr.gov.ua, greencity.omr.gov.ua, my.omr.gov.ua, omr.gov.ua, www.netart.com, www.powiat.zgierz.pl, ogs.omr.gov.ua, cba.pl, cyberfolks.pl, www.kylos.pl, deputat.omr.gov.ua, billing.talismann.online, poczta.domena.pl, mail.dpsp-omr.odessa.ua, webd.pl, strefaklienta.atman.pl, torg.omr.gov.ua, www.iq.pl, www.krakow.pl, finance-dzr.omr.gov.ua, openhost.pl, www.aftermarket.pl, panel.kylos.pl, www.malopolskie.pl, powiat.krakow.pl, carparking.omr.gov.ua
Dismissed Targets(0):
New Targets(24): powiat.poznan.pl, www.powiat.kielce.pl, www.pitradwar.com, www.golebiewski.pl, www.mesko.com.pl, www.poznan.pl, phh.pl, polishdefenceindustry.gov.pl, www.focushotels.pl, www.wakacje.pl, elta.com.pl, www.sosnowiec.pl, www.powiat-olsztynski.pl, szczecin.eu, www.kielce.uw.gov.pl, pcosa.com.pl, 1login.wp.pl, www.poznan.uw.gov.pl, stomil-bydgoszcz.pl, ir.focushotels.pl, www.czestochowa.pl, www.slaskie.pl, www.kielce.eu, www.abw.gov.pl
Targets from prev attack(30): talismann.online, www.miasto.zgierz.pl, citizen.omr.gov.ua, www.domena.pl, odesa365.omr.gov.ua, greencity.omr.gov.ua, my.omr.gov.ua, omr.gov.ua, www.netart.com, www.powiat.zgierz.pl, ogs.omr.gov.ua, cba.pl, cyberfolks.pl, www.kylos.pl, deputat.omr.gov.ua, billing.talismann.online, poczta.domena.pl, mail.dpsp-omr.odessa.ua, webd.pl, strefaklienta.atman.pl, torg.omr.gov.ua, www.iq.pl, www.krakow.pl, finance-dzr.omr.gov.ua, openhost.pl, www.aftermarket.pl, panel.kylos.pl, www.malopolskie.pl, powiat.krakow.pl, carparking.omr.gov.ua
Dismissed Targets(0):
2026-07-02_08-10-18
The attacks attributed to noname057 primarily target websites in Poland and Ukraine. Key sectors affected include local government, finance, and online services. Notable sites include various regional government portals from Ukraine, such as odesa365.omr.gov.ua, and multiple Polish websites like kylos.pl and malopolskie.pl. The attacks indicate a focus on disrupting public services and local administration in these countries.AI generated30 targets are under attack, 0 new targets and 30 targets from previous attack
New Targets(0):
Targets from prev attack(30): strefaklienta.atman.pl, talismann.online, www.kylos.pl, odesa365.omr.gov.ua, www.malopolskie.pl, openhost.pl, www.domena.pl, mail.dpsp-omr.odessa.ua, poczta.domena.pl, www.aftermarket.pl, ogs.omr.gov.ua, finance-dzr.omr.gov.ua, cyberfolks.pl, www.netart.com, webd.pl, powiat.krakow.pl, www.iq.pl, cba.pl, carparking.omr.gov.ua, my.omr.gov.ua, www.powiat.zgierz.pl, torg.omr.gov.ua, omr.gov.ua, panel.kylos.pl, citizen.omr.gov.ua, www.miasto.zgierz.pl, deputat.omr.gov.ua, www.krakow.pl, greencity.omr.gov.ua, billing.talismann.online
Dismissed Targets(13): platformazakupowa.pl, www.geoportal.gov.pl, poczta.zenbox.pl, www.poland.travel, zenbox.pl, panel.zenbox.pl, accounts.opennexus.com, ehost.pl, trybunal.gov.pl, spetstechnoexport.com, octavacapital.ua, www.etop.pl, www.ukrniat.com
New Targets(0):
Targets from prev attack(30): strefaklienta.atman.pl, talismann.online, www.kylos.pl, odesa365.omr.gov.ua, www.malopolskie.pl, openhost.pl, www.domena.pl, mail.dpsp-omr.odessa.ua, poczta.domena.pl, www.aftermarket.pl, ogs.omr.gov.ua, finance-dzr.omr.gov.ua, cyberfolks.pl, www.netart.com, webd.pl, powiat.krakow.pl, www.iq.pl, cba.pl, carparking.omr.gov.ua, my.omr.gov.ua, www.powiat.zgierz.pl, torg.omr.gov.ua, omr.gov.ua, panel.kylos.pl, citizen.omr.gov.ua, www.miasto.zgierz.pl, deputat.omr.gov.ua, www.krakow.pl, greencity.omr.gov.ua, billing.talismann.online
Dismissed Targets(13): platformazakupowa.pl, www.geoportal.gov.pl, poczta.zenbox.pl, www.poland.travel, zenbox.pl, panel.zenbox.pl, accounts.opennexus.com, ehost.pl, trybunal.gov.pl, spetstechnoexport.com, octavacapital.ua, www.etop.pl, www.ukrniat.com
2026-07-02_08-05-12
The attacks attributed to noname057 primarily target websites in Poland and Ukraine. Key sectors affected include government services, local municipalities, and various online platforms. Notable sites include government portals like odesa365.omr.gov.ua and finance-dzr.omr.gov.ua in Ukraine, as well as multiple Polish sites such as strefaklienta.atman.pl and www.krakow.pl. The attacks highlight a significant focus on critical infrastructure and public services in these countries.AI generated43 targets are under attack, 15 new targets and 28 targets from previous attack
New Targets(15): strefaklienta.atman.pl, www.krakow.pl, talismann.online, www.kylos.pl, billing.talismann.online, www.netart.com, www.malopolskie.pl, webd.pl, openhost.pl, powiat.krakow.pl, www.domena.pl, www.iq.pl, cba.pl, www.aftermarket.pl, panel.kylos.pl
Targets from prev attack(28): odesa365.omr.gov.ua, panel.zenbox.pl, mail.dpsp-omr.odessa.ua, poczta.domena.pl, ogs.omr.gov.ua, platformazakupowa.pl, poczta.zenbox.pl, finance-dzr.omr.gov.ua, cyberfolks.pl, www.poland.travel, www.ukrniat.com, carparking.omr.gov.ua, www.geoportal.gov.pl, my.omr.gov.ua, www.powiat.zgierz.pl, torg.omr.gov.ua, ehost.pl, omr.gov.ua, octavacapital.ua, citizen.omr.gov.ua, www.miasto.zgierz.pl, deputat.omr.gov.ua, greencity.omr.gov.ua, zenbox.pl, accounts.opennexus.com, trybunal.gov.pl, spetstechnoexport.com, www.etop.pl
Dismissed Targets(18): my.beyond.pl, www.trade.gov.pl, login.play.pl, nsa.gov.pl, uokik.gov.pl, www.ferrexpo.ua, tiktalik.com, photopribor.ck.ua, www.play.pl, zmturbines.com, aesgroup.com.ua, oneplace.marketplanet.pl, www.paih.gov.pl, erc.ua, www.morozov.com.ua, ezamowienia.gov.pl, www.malyshevplant.com, www.beyond.pl
New Targets(15): strefaklienta.atman.pl, www.krakow.pl, talismann.online, www.kylos.pl, billing.talismann.online, www.netart.com, www.malopolskie.pl, webd.pl, openhost.pl, powiat.krakow.pl, www.domena.pl, www.iq.pl, cba.pl, www.aftermarket.pl, panel.kylos.pl
Targets from prev attack(28): odesa365.omr.gov.ua, panel.zenbox.pl, mail.dpsp-omr.odessa.ua, poczta.domena.pl, ogs.omr.gov.ua, platformazakupowa.pl, poczta.zenbox.pl, finance-dzr.omr.gov.ua, cyberfolks.pl, www.poland.travel, www.ukrniat.com, carparking.omr.gov.ua, www.geoportal.gov.pl, my.omr.gov.ua, www.powiat.zgierz.pl, torg.omr.gov.ua, ehost.pl, omr.gov.ua, octavacapital.ua, citizen.omr.gov.ua, www.miasto.zgierz.pl, deputat.omr.gov.ua, greencity.omr.gov.ua, zenbox.pl, accounts.opennexus.com, trybunal.gov.pl, spetstechnoexport.com, www.etop.pl
Dismissed Targets(18): my.beyond.pl, www.trade.gov.pl, login.play.pl, nsa.gov.pl, uokik.gov.pl, www.ferrexpo.ua, tiktalik.com, photopribor.ck.ua, www.play.pl, zmturbines.com, aesgroup.com.ua, oneplace.marketplanet.pl, www.paih.gov.pl, erc.ua, www.morozov.com.ua, ezamowienia.gov.pl, www.malyshevplant.com, www.beyond.pl