Silentransomgroup Ransomware
ActiveThreat actor group tracked in the global ransomware database Β· Last disclosure: May 19, 2026
Threat Actor Analysis
Silentransomgroup is a ransomware threat group that has disclosed 114 victims in publicly accessible leak site data, representing 0.6% of all ransomware attacks tracked in this database. The earliest victim disclosure attributed to Silentransomgroup in our dataset dates to May 2026.
Geographically, Silentransomgroup has targeted organisations in 5 countries. The most frequently targeted nation is United States with 106 victim organisations. Other heavily targeted nations include Canada, Germany, United Kingdom.
Industry-wise, Silentransomgroup shows a concentration in the Business Services sector. These industries are frequently targeted because they manage sensitive data, critical operations, or have lower tolerance for operational downtime β conditions that increase ransom payment likelihood.
Like most modern ransomware operations, Silentransomgroup likely employs a double extortion model: encrypting victim files while simultaneously exfiltrating data, creating dual pressure to pay the ransom. Victim organisations that refuse payment face having their data published on the group's dark web leak site.
Note: This profile is generated from public leak site disclosures aggregated via the ransomware.live API. Data is updated automatically. The victim table below shows the 6 most recent cached victims; the total victim count (114) reflects the complete database.
Recent Victim Disclosures (6 cached of 114 total)
| # | Organization | Country | Sector | Date |
|---|---|---|---|---|
| 1 |
Barclay Damon
barclaydamon.com
|
πΊπΈ United States | Business Services | May 19, 2026 |
| 2 |
Porter Wright
porterwright.com
|
πΊπΈ United States | Business Services | May 12, 2026 |
| 3 |
Marshall Dennehey
marshalldennehey.com
|
πΊπΈ United States | Business Services | May 12, 2026 |
| 4 |
Farella Braun + Martel LLP Information
|
πΊπΈ United States | Business Services | May 6, 2026 |
| 5 |
Sandberg Phoenix Information
sandbergphoenix.com
|
πΊπΈ United States | Business Services | May 6, 2026 |
| 6 |
Ropers Majeski
ropers.com
|
πΊπΈ United States | Business Services | May 6, 2026 |
Frequently Asked Questions
What is Silentransomgroup ransomware?
Silentransomgroup is a ransomware threat group that has claimed 114 victims since its first known activity in May 2026. The group operates by infiltrating target networks, exfiltrating data, encrypting files, and threatening to publish stolen data on a dark web leak site if the ransom is not paid.
How many victims has Silentransomgroup attacked?
Silentransomgroup has claimed 114 victims in our database, representing 0.6% of all tracked ransomware attacks. The most targeted countries are United States, Canada, Germany, United Kingdom.
Which countries does Silentransomgroup target?
Silentransomgroup has attacked organizations in 5 countries. The top targeted countries are: United States, Canada, Germany, United Kingdom.
Which industries does Silentransomgroup target?
Silentransomgroup most frequently targets the Business Services sectors based on victim disclosures in our database.
Is Silentransomgroup still active?
Silentransomgroup's most recent victim disclosure in our database was on May 19, 2026. Ransomware groups frequently rebrand or go dormant; monitor this page and our ransomware map for the latest activity.