0APT Claims 200 Victims Without Proof

A new ransomware-as-a-service group calling itself 0APT emerged around January 28, 2026, claiming roughly 200 victims while providing no verifiable proof. Its Tor-hosted data leak site displays large file trees and generates Windows and Linux builds, yet downloads routinely stall and leaked files stream incomplete or meaningless data. Researchers warn the operation appears aimed at notoriety and affiliate recruitment, so defenders should validate any sightings with internal telemetry and hashes.