Top Threat Actors

Volt Typhoon

★ Rank: 1

1000000 Audience

2 News

189 IOC

Target Countries: Australia UK India USA

Target Sectors: Telecommunications - Transportation - Government - Manufacturing - Maritime and Shipbuilding -

Associated Malware/Software:

sh.kv

HiatusRAT

win.scanline

+ 3

Related CVE's: CVE-2021-27860 CVE-2023-27350 CVE-2021-26857 CVE-2021-27065 CVE-2022-27997

ATT&CK IDs: T1105 T1593 T1583.005 T1210 T1592

+ 44

See Details

APT37

★ Rank: 2

286087 Audience

2 News

5327 IOC

Target Countries: Romania Vietnam Nepal South Korea Hong Kong

+ 9

Target Sectors: Technology - Transportation - Chemical - Automotive - Government -

Associated Malware/Software:

win.konni

win.goldbackdoor

win.starcruft

HAPPYWORK

Ursnif

+ 22

Related CVE's: CVE-2023-38831 CVE-2018-4878 CVE-2018-8373 CVE-2023-36884 CVE-2022-41128

ATT&CK IDs: T1112 T1001 T1016 T1049 T1140

+ 163

See Details

InvisiMole

★ Rank: 3

255000 Audience

2 News

559 IOC

Target Countries: Ukraine Russia Eastern Europe

Target Sectors: Defense - Government -

Associated Malware/Software:

No Malware available.

Related CVE's: CVE-2018-20250 CVE-2018-0802 CVE-2018-2025010 CVE-2018-19320 CVE-2017-11882

ATT&CK IDs: T1221 T1560 T1543 T1102 T1497

+ 20

See Details

LockBit

★ Rank: 4

172100 Audience

1 News

3061 IOC

Target Countries: Belarus Russian Federation India British Indian Ocean Territory Brazil

+ 1

Target Sectors: Emergency Services - Energy - IT - Medical - Critical Infrastructure -

Associated Malware/Software:

babuk

sliver

Mallox

disttrack

mimikatz

+ 26

Related CVE's: CVE-2023-38831 CVE-2023-46747 CVE-2024-43461 CVE-2024-21893 CVE-2021-44228

ATT&CK IDs: T1087 - Account Discovery T1071 - Application Layer Protocol T1021.002 - SMB/Windows Admin Shares T1016 - System Network Configuration Discovery T1561 - Disk Wipe

+ 110

See Details

Top Ransomware Groups

hunters

★ Rank: 1

1627397 Audience

23 News

2 IOC

Target Countries: Turkey Indonesia Tunisia United States Germany

+ 35

Target Sectors: Food Manufacturing - Real Estate - Hospitals - Accommodation - Air Transportation -

Associated Malware/Software:

Ransomware

Related CVE's:

No CVE's available.

ATT&CK IDs:

No Attack IDs

See Details

ransomed

★ Rank: 2

764844 Audience

13 News

0 IOC

Target Countries: Turkey Austria China United States Bulgaria

+ 17

Target Sectors: Other Information Services - Hospitals - Air Transportation - Manufacturing - Construction -

Associated Malware/Software:

No Malware available.

Related CVE's: CVE-2020-0601 CVE-2018-8174 CVE-2021-34527 CVE-2019-1458

ATT&CK IDs: T1486 T1059 T1078 T1071

See Details

akira

★ Rank: 3

734168 Audience

3 News

265 IOC

Target Countries: Switzerland Japan Kenya Argentina Sweden

+ 36

Target Sectors: Food Manufacturing - Other Information Services - Rail Transportation - Software Publishers - Real Estate -

Associated Malware/Software:

Netwalker - S0457

Virus:Win32/Alma

APT

Backdoor:Win32/Aeon

win.crimson

+ 46

Related CVE's: CVE-2023-27532 CVE-2017-0147 CVE-2023-20269

ATT&CK IDs: T1567 - Exfiltration Over Web Service T1047 - Windows Management Instrumentation T1219 - Remote Access Software T1560 - Archive Collected Data T1133 - External Remote Services

+ 37

See Details

ransomhub

★ Rank: 4

279765 Audience

5 News

44 IOC

Target Countries: Turkey Indonesia Switzerland Austria Peru

+ 56

Target Sectors: Food Manufacturing - Real Estate - Hospitals - Accommodation - Air Transportation -

Associated Malware/Software:

No Malware available.

Related CVE's: CVE-2021-34527 CVE-2022-26809 CVE-2021-44228

ATT&CK IDs: T1566.001 T1078 T1562.001 T1486 T1027

See Details

Discover the adversaries targeting your industry

Search Your Enemy