spacebears

Ransomware group profile

57Victims

RussiaSource country

61Impact score

Description

SpaceBears is a ransomware group that primarily focuses on high-profile cyberattacks across various industries. Known for employing sophisticated tactics, they utilize advanced encryption and double extortion methods while also operating as a data broker. Their operations have a global reach, making significant impacts on targeted organizations.

Key insights

•Employs double extortion tactics by encrypting data and threatening to publish it online.
•Targets a wide range of sectors, including healthcare and energy, capitalizing on vulnerabilities related to ongoing events like the COVID-19 pandemic.
•Gains initial access through social engineering, phishing, and exploiting known software vulnerabilities.
•Adopts zero-day vulnerabilities for breaches, indicating a shift towards more advanced hacking techniques.
•Ransom demands are typically high, reflecting their focus on financial gain through data exfiltration.

Industries

Energy & Utilities Financial Services Government & Defense Healthcare Hospitality Manufacturing Other Professional Services Retail & E-Commerce Technology Transportation

Threat Level & Status Breakdown

For spacebears · Based on incidents in selected period

3.1threat level

Aggressiveness6/ 10

Lethality0.5/ 10

Criticality2.9/ 10

Status Breakdown

Data Leaked10.5%6

Claimed89.5%51

First seenJun 2025

Last seenMay 2026

Avg ransom—

Payment rate—

Statusactive

Sophistication0

Last updatedJun 2, 2026

Recent activity

Monthly attack count for spacebears in the selected period

57Total attacks

8peak in Oct

4.8avg / month

↑ 3 vs first month

No intelligence data for this group.

TTPs & Attack Vectors

Tools, initial access, and MITRE ATT&CK techniques for spacebears

Other

T1486

T1490

T1078

T1041

T1562

T1021

T1059

T1021.001

T1105

T1033

T1110

T1583

Victims(57)

Company	Domain	Country	Industry	Status	Discovered
Stellar	—	Tc	—	Claimed	1 day ago
BASE SPA	basespa.com	IT Italy	Professional Services	Claimed	9 days ago
Hunter	hunter.io	IE Ireland	Technology	Claimed	9 days ago
Filabé	filabe.ch	CH Switzerland	Other	Claimed	9 days ago
Ridge Law Firm	ridgelawfirm.com	US United States	Professional Services	Claimed	8 days ago
Gestordes	gestordes.es	ES Spain	Professional Services	Claimed	8 days ago
Johnson & Johnson Innovative Medicine	jnj.com	US United States	Healthcare	Claimed	about 1 month ago
Asaniverko	asaniverko.be	BE Belgium	Professional Services	Claimed	about 2 months ago
Ultimate Metals	ultimatemetals.com	GB United Kingdom	Manufacturing	Claimed	about 2 months ago
SmilePoint Dental Group	smilepoint.us	US United States	Healthcare	Claimed	23 days ago
Erla Technologies SAS	erla.fr	FR France	Technology	Claimed	30 days ago
Brooklands of Mornington	brooklandsofmornington.com.au	AU Australia	Hospitality	Claimed	about 2 months ago
AbelZeta	abelzeta.com	BA Bosnia and Herzegovina	Healthcare	Claimed	3 months ago
Bonheure	bonheure.co.jp	JP Japan	Hospitality	Claimed	3 months ago
Sitran MG	sitran.com.br	BR Brazil	Professional Services	Claimed	4 months ago
Darma Henwa	ptdh.co.id	ID Indonesia	Energy & Utilities	Claimed	4 months ago
Siem Srl	siem.it	IT Italy	Energy & Utilities	Claimed	4 months ago
Wagner Metal Concept	wmc-metal.com	DE Germany	Manufacturing	Claimed	4 months ago
Buff Law	bufflaw.com	US United States	Professional Services	Claimed	4 months ago
Kymco	kymco.com.tw	TW Taiwan	Manufacturing	Claimed	4 months ago

Page 1 of 3