Ransomware victim disclosure
← All victimsLiveaction inc.
Claimed by Nokoyawa · listed 3 years ago
Status timeline
- ListedMay 23, 2023
- Data leakeddate unknown
At a glance
- Group
- Nokoyawa
- Status
- Data leaked
- Country
- United States
- Sector
- Technology
- Listed on leak site
- May 23, 2023
About the victim
AI dossier — public-source company profileLiveAction Inc. is a US-based software company that develops network observability and intelligence solutions, including products for network performance monitoring (LiveNX), packet capture and forensics (LiveWire), and AI-driven network operations (LiveAssist). Its platform provides enterprise and service-provider customers with visibility across physical, virtual, cloud, and SD-WAN infrastructures. LiveAction's capabilities have been integrated into BlueCat's network observability portfolio.
- Industry
- Network Performance Monitoring & Security Software
- Employees
- 51-200
Attack summary
Severity: high — Data has been confirmed published by the threat actor (data_published status), indicating successful exfiltration. LiveAction handles sensitive enterprise network visibility and security data for its customers; a breach could expose proprietary network intelligence, customer configuration data, and internal business records. The combination of confirmed publication and the sensitive nature of a cybersecurity/network monitoring vendor raises severity to high.The Nokoyawa ransomware group claims to have attacked LiveAction Inc. and has published data (disclosed_status: data_published), suggesting exfiltration of company data, though the specific data types and volume have not been detailed in the available leak post excerpt.
Data the group says was taken
AI dossier — extracted from the leak post- Internal business data
- Potentially customer records
- Potentially employee data
- Potentially proprietary software/platform data
What the group claims
LiveAction’s Network Intelligence platform transforms complex data into actionable insights, providing organizations with a comprehensive view of their network, from network and application performance to security. Enterprise teams can rapidly take action to resolve network issues at scale...
Sources
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

