Sign up
Login
MALWARE
//
THREAT ACTORS
//
VULNERABILITIES
1430
Threat Actor Objects
21594
Documents talking Threat Actor
50
Active Sources
3
Updates so far today
Hot threats you should care about.
CVE-2023-46805
Fudmodule
Alphv
Moobot
Scattered Spider
5 updates this week.
17.65%
ransomware
phishing
exploit
esxi
extortion
alphv
credentials
malware
ransom
cybercrime
+136 other associations
Scattered Spider, also known as Octo Tempest, 0ktapus, and UNC3944, is a notorious threat actor group involved in major data extortion campaigns. This cybercriminal group has been associated with high-profile attacks on organizations like Caesars Entertainment and MGM, often in collaboration with th
Unc3886
5 updates this week.
185.7%
mandiant
exploit
zero-day
malware
vmware
vulnerability
fortios
esxi
apt
junos
+47 other associations
UNC3886 is a threat actor, believed to be linked to China, that has been active in cyberespionage activities. The group has been exploiting a zero-day vulnerability in VMware's vCenter Server, identified as CVE-2023-34048, since at least late 2021. This advanced persistent threat (APT) group's actio
Shinyhunters
2 updates this week.
166.7%
breachforums
cybercrime
ransom
fraud
exploit
credentials
snowflake
ransomware
extortion
aws
+10 other associations
ShinyHunters, a notorious threat actor group, has been involved in several significant data breaches, posing a serious cybersecurity concern for businesses worldwide. The group is known for its malicious activities targeting corporate entities, with the intent of stealing proprietary information. Be
Medusa
2 updates this week.
100%
ransomware
malware
ransom
medusa ranso...
raas
lockbit
alphv
tool
ransomhub
turla
+137 other associations
Medusa, a threat actor group known for its malicious activities, has been increasingly involved in multiple high-profile cyber attacks. In November 2023, Medusa and other groups like LockBit and ALPHV (BlackCat) exploited a zero-day vulnerability, the Citrix Bleed (CVE-2023-4966), leading to numerou
Muddled Libra
2 updates this week.
300%
scattered sp...
cybercrime
phishing
unc3944
ransomware
octo tempest
alphv
rmm
+28 other associations
Muddled Libra, a threat actor subgroup known for its sophisticated cyber-attack techniques, has recently been noted for its advanced exfiltration and discovery methods using AWS and Azure cloud services. The group has not claimed responsibility for any specific attacks, but their tactics align close
UNC3944
2 updates this week.
300%
ransomware
scattered sp...
octo tempest
extortion
alphv
unc3944
phishing
esxi
cybercrime
dragonforce
+39 other associations
UNC3944, also known as Scattered Spider or 0ktapus, is a notable threat actor in the cybersecurity landscape. This group primarily targets telecommunication firms and tech companies, but has expanded its operations to hospitality, retail, media, and financial services sectors. The group's modus oper
Agent Serpens
1 updates this week.
300%
+5 other associations
Unc4841
1 updates this week.
300%
exploit
vulnerability
phishing
cve-2023-2868
lateral move...
barracuda
espionage
malware
+11 other associations
UNC4841 is a threat actor group believed to be affiliated with the Chinese government, known for its malicious cyber activities. Recently, this group exploited a zero-day vulnerability in Barracuda's Email Security Gateway (ESG), a flaw that allowed them to breach US government email servers. This i