Sign up
Login
MALWARE
//
THREAT ACTORS
//
VULNERABILITIES
1433
Threat Actor Objects
20793
Documents talking Threat Actor
50
Active Sources
0
Updates so far today
Hot threats you should care about.
CVE-2023-46805
Fudmodule
Alphv
Moobot
Ransomhub
2 updates this week.
33.33%
ransomware
alphv
ransom
lockbit
raas
windows
malware
extortion
encrypt
exploit
+115 other associations
RansomHub, a threat actor in the realm of cybersecurity, has emerged as a significant player within the ransomware landscape. The group is known for its malicious activities, including data breaches and extortion attempts. It has been observed that RansomHub affiliates actively participate in campai
Cloudsorcerer
1 updates this week.
100%
backdoor
malware
cloud services
plugy
cloudwizard
apt
apt27
windows
kaspersky
apt31
+7 other associations
CloudSorcerer, a threat actor group known for its malicious activities, has been identified by Kaspersky as the entity behind a new EastWind campaign targeting Russian organizations. The group updated their CloudSorcerer backdoor after it was initially described in a blog post by Kaspersky in early
Salt Typhoon
1 updates this week.
-66.67%
state-sponso...
ghostemperor
apt
chinese
government
exploit
vulnerability
earth estries
china
volt typhoon
+23 other associations
Salt Typhoon, also known as Earth Estries, FamousSparrow, GhostEmperor, and UNC2286, is a threat actor linked to China's Ministry of State Security. Active since at least 2020, this advanced persistent threat (APT) group has a history of targeting U.S. systems for intelligence gathering, particularl
Mikhail Pavlovich Matveev
1 updates this week.
300%
ransomware
lockbit
uhodiransomwar
wazawaka
m1x
boriselcin
hive ransomw...
ransom
russia
babuk
+5 other associations
Mikhail Pavlovich Matveev, a Russian national also known by online monikers Wazawaka, m1x, Boriselcin, and Uhodiransomwar, has been identified as a major threat actor in the world of cybersecurity. Matveev is among five Russians charged in connection with Lockbit, a group widely recognized as one of
Blind Eagle
1 updates this week.
300%
apt
+4 other associations
Blind Eagle, also known as APT-C-36, is a suspected South American Advanced Persistent Threat (APT) group that has been active since April 2018. The group has continuously targeted Colombian government institutions and important corporations in various sectors including finance, petroleum, and profe
APT27
1 updates this week.
100%
apt
emissary panda
malware
iron tiger
mustang panda
luckymouse
apt31
sysupdate
lucky mouse
backdoor
+56 other associations
APT27, also known as Emissary Panda or Iron Taurus, is a threat actor suspected to be associated with China and has been involved in cyber operations primarily aimed at intellectual property theft. The group targets organizations globally, including those in North and South America, Europe, and the
APT31
1 updates this week.
100%
zirconium
malware
judgment panda
kaspersky
apt31
state-sponso...
vulnerability
exploits
implant
trojan
+58 other associations
APT31, also known as Zirconium, is a threat actor believed to be linked to the Chinese government. This group has been associated with numerous cyber attacks, including a significant exploit of CVE-2017-0005. This exploit, dubbed "Jian," was initially attributed to APT31 but upon further analysis by
Ghostemperor
1 updates this week.
33.33%
ghostemperor
apt
famoussparrow
+1 other associations
GhostEmperor, also known as Salt Typhoon and FamousSparrow, is a threat actor that has been active since August 2019. The group is linked to China's Ministry of State Security and is recognized for its sophisticated cyber campaigns primarily targeting high-profile entities in Southeast Asia, includi