Nova — every breach we're tracking
Running log of incidents attributed to or claimed by Nova in public reporting, with what was exposed and what victims should do. Updated as new incidents are ingested.
Groups like Nova steal data first and extort second — and the stolen records rarely stay private. Once a victim organization's data hits a leak site, the personal details inside (names, emails, phones, addresses) get scraped into the same broker-and-dump ecosystem every doxxer searches. If an organization you've used appears below, treat your data as circulating.
Tracked incidents
LTI Services Hit by Nova Ransomware
LTI Services (ltiservices.com) and associated Larick Towing were listed as victims by the Nova ransomware group (formerly RALord). The RaaS …
University of Valencia Hit by Nova Ransomware
Nova ransomware group claimed the University of Valencia (Spain), alleging theft of sensitive student and staff data including personal chil…
National Louis University Hit by Nova Ransomware
Poland-based higher education institution National Louis University (WSB-NLU) was compromised by the Nova ransomware group. The incident was…
Lockers IT Breached by Nova Ransomware
Lockers IT, a Bangladesh-based managed IT services, cybersecurity, and cloud solutions provider, was claimed by the Nova ransomware group. T…
Vietnamese Real Estate Site Nhathanhpho Hit by Nova Ransomware
Nhathanhpho.com.vn, a Vietnamese real estate listing platform, was claimed by the Nova ransomware group. The victim listing appeared on moni…
Trevi S.p.A. Hit by Nova Ransomware
Italian engineering and construction company Trevi (trevi.it) was claimed by the Nova ransomware group. Discovery reported on Ransomware.liv…
Both halves of the chain, cleaned once.
A breach put your credentials in 15.4B+ leaked records. Hackers chain that data to your address on 800+ broker sites. GalaxyWarden closes both halves for $19 once — no subscription required.