aka BaqiyatLock
BQTLock surfaced in July 2025 and operates as a fully-fledged Ransomware-as-a-Service (RaaS) with a double-extortion model. It employs AES-256 for file encryption, with keys secured by RSA-4096, appending the .BQTLOCK extension to encrypted files. Victims receive ransom notes such as READ_ME-NOW_*.txt, warning that failure to make contact within 48 hours doubles the ransom, and that decryption keys will be destroyed after seven days. The group offers tiered pricing "waves" with different XMR (Monero) amounts for quicker decryption—e.g., Wave 1 might cost 13 XMR, while Wave 3 could be 40 XMR. Targets include organizations such as U.S. military alumni networks and educational institutions.
Website:
dgm.co.il
Data Size:
526 GB
Payment Status:
Unpaid - Private Price
Company Info:
DGM is an Israel-based information technology company specializing in the supply of computer hardware and electronic equipment. The company offers a range of IT products including laptops, desktop computers, servers, printers, and related accessories, serving business and professional clients. DGM focuses on practical technology solutions tailored to organizational and enterprise needs within the local market.
Morning Desert Safari
Website:
morningdesertsafari.net
Payment Status:
Unpaid - Private Price
Company Info:
Morning Desert Safari is a Dubai-based tour operator offering early-morning desert adventure experiences. Their tours typically include 4×4 dune bashing, sandboarding, camel rides, and sunrise desert views, with pickup and drop-off from hotels or residences in the UAE. The experience is designed for visitors who want to explore the Arabian desert in the cooler morning hours with adventure and scenic highlights before midday.
Arabian Desert Safari
Website:
arabiandesertsafari.net
Payment Status:
Unpaid - Private Price
Company Info:
Arabian Desert Safari, established in 1976, is a Dubai-based tourism company offering guided desert safari experiences, including dune bashing, camel rides, sandboarding, cultural shows, and desert dining. The company operates tours across the UAE, focusing on adventure and traditional desert experiences.
Dhow Cruise Dubai Harbour
Website:
dhowcruisedubaiharbour.com
Payment Status:
Unpaid - Private Price
Company Info:
Dhow Cruise Dubai Harbour is a Dubai-based tourism company offering dhow cruises and private yacht charters along Dubai Harbour and Dubai Marina. The company provides sightseeing and dinner experiences with onboard dining, entertainment, and panoramic views of Dubai's skyline, combining traditional maritime heritage with modern luxury.
Hatta Heritage Village
Website:
hattaheritagevillage.com
Payment Status:
Unpaid - Private Price
Company Info:
Hatta Heritage Village is a historic heritage attraction in Hatta, Dubai, showcasing traditional Emirati mountain life through restored homes, forts, watchtowers, and cultural exhibits. It is maintained as a tourism and cultural site to preserve and present the UAE's history and traditions.
Adore UAE
Domains:
adoreuae.com
www.adoreuae.com
Active Since:
2017
Data Size:
~private (encrypted)
Payment Status:
Unpaid (66 XMR requested)
Encrypted Type:
All servers and data
EPS FUJ Private School UAE
Domains:
epsfuj.com
www.epsfuj.com
Active Since:
2024
Data Size:
~private(encrypted)
Payment Status:
Unpaid (50 XMR requested)
Encrypted Type:
All servers and data
European Business Server Cluster
Domains:
www.bizoneo.com
www.bizosoft.eu
meeting.wandsoft.com
dataprotectionact.ie
bizoneo.com
www.bizoneo.eu
www.bizoneo-membership.eu
www.tourguides.ie
bizoneo-membership.eu
cleanrooms-ireland.ie
www.cleanrooms-ireland.ie
members.tourguides.ie
+138 more
Active Since:
2005-
Data Size:
Shown in video
Payment Status:
Unpaid (private XMR requested)
Encrypted Type:
Full computer and database backups
eFunda, Inc.
Domain: efunda.com (270+ subdomains)
Active Since: 1999
Data Size: ~670 GB (encrypted)
Payment Status: Unpaid (200 XMR requested)
Leak Type: Full database + backups
