Genesis and InCRansom Ransomware Groups List New Victims Including HostBooks, Fargo Chamber, Casino Gaming Commission

Two ransomware-as-a-service operations have published fresh victim listings on their respective dark web blogs, according to threat intelligence monitoring. The Genesis ransomware group posted multiple organizations, while InCRansom added at least one new target to their leak site.

Genesis, an established ransomware operation, listed at least five new victims in recent posts catalogued by threat intelligence tracking. The targets include HostBooks, flagged as a high-priority posting, along with Ben F. Barcus and associates pllc, Integrated Process Engineers & Constructors, the Fargo Moorhead West Fargo Chamber, and the Casino Gaming Commission. InCRansom, a separate ransomware operator, listed the organization Bideawee on their blog. Both groups operate double-extortion models, stealing data before encrypting systems and threatening publication if ransom demands go unmet.

The breadth of sectors targeted—ranging from professional services and engineering to chambers of commerce and gaming regulatory bodies—underscores the indiscriminate approach adopted by these operations. The inclusion of the Fargo Moorhead West Fargo Chamber suggests the group is willing to penetrate regional business infrastructure, while the Casino Gaming Commission listing points to exposure within regulated gambling industries. HostBooks, marked prominently by Genesis, may indicate either larger ransom demands or particularly sensitive compromised data. Organizations in these sectors are advised to review detection signatures, audit remote access configurations, and ensure offline backups remain inaccessible to attackers who may already possess internal network credentials.