Threat Actor Database
#284

ALP-001

Ransomware

ALP-001 is a financially motivated ransomware group that emerged publicly around March 2026, though its activities as an Initial Access Broker (IAB) have been traced back to at least March 2023. The group transitioned from solely selling initial network access to a broader extortion model by launching its own Tor-based data leak site. This evolution indicates a strategic shift towards directly extorting compromised organizations, distinguishing them from traditional IABs who typically just sell access. While they possess verified credibility for selling access, their operational maturity regarding actual data exfiltration and ransomware deployment is assessed with moderate confidence to be low-to-moderate, with some leaked data observed to originate from misconfigured or publicly available services. The group also reportedly cycles through accounts and aliases when its credibility is challenged, which can lead to potential confusion with other threat actors or activities.

IQ18 victimsFirst seen: 2023-03-27Last seen: 2026-04-08

Target Countries

United Arab EmiratesArgentinaAustriaBelgiumBrazilCanadaSwitzerlandChinaCubaCzech RepublicGermanySpainFranceUnited KingdomHungaryIsraelIndiaItalyJapanKorea, Republic ofMoroccoMartiniqueMexicoNetherlandsNew ZealandPolandSlovakiaUkraineUnited StatesKosovo

Target Sectors

Food ManufacturingOther Information ServicesSoftware PublishersAccommodationManufacturingConstructionElectrical Equipment, Appliance, and Component ManufacturingPublic AdministrationWholesale TradeData Processing ServicesInternet PublishingSpace & DefenseEnergy & Utilities Motion Picture and Video ProductionAll Other Information ServicesComputer Systems Design and Related ServicesPublishing ServicesAccommodation&Food ServicesMiningTelecommunicationsTransportation&WarehousingRetailAgriculture&ForestryElectrical&Electronical ManufacturingInformation ServicesComputer Design & ServicesBankingOtherFinanceProfessional&Technical ServicesHealthCare & Social AssistanceArts & EntertainmentHardware ManufacturingNational SecurityOffices of LawyersComputer Systems Design Services