Sign up
Login
MALWARE
//
THREAT ACTORS
//
VULNERABILITIES
1431
Threat Actor Objects
21980
Documents talking Threat Actor
50
Active Sources
1
Updates so far today
Hot threats you should care about.
CVE-2023-46805
Fudmodule
Alphv
Moobot
Shinyhunters
4 updates this week.
-5.882%
scattered sp...
breachforums
cybercrime
extortion
phishing
ransom
lapsus
exploit
google
salesforce
+44 other associations
ShinyHunters, a notorious threat actor group, has been involved in several significant data breaches, posing a serious cybersecurity concern for businesses worldwide. The group is known for its malicious activities targeting corporate entities, with the intent of stealing proprietary information. Be
Scattered Spider
3 updates this week.
-60%
ransomware
phishing
extortion
credentials
exploit
malware
cybercrime
scattered sp...
esxi
alphv
+167 other associations
Scattered Spider, also known as Octo Tempest, 0ktapus, and UNC3944, is a notorious threat actor group involved in major data extortion campaigns. This cybercriminal group has been associated with high-profile attacks on organizations like Caesars Entertainment and MGM, often in collaboration with th
Graceful Spider
3 updates this week.
140%
clop
exploit
oracle
crowdstrike
cve-2025-61882
+8 other associations
Graceful Spider, also known as TA505, is a threat actor recognized for its malicious cyber activities. This entity has been identified by the cybersecurity industry as the driving force behind various targeted campaigns with harmful intent. The group could be a single individual, a private organizat
cl0p group
3 updates this week.
200%
clop
vulnerability
exploit
ransomware
ransom
moveit
zero-day
+16 other associations
The Cl0p group, a threat actor in the cybersecurity landscape, has been responsible for a significant surge in ransomware attacks. This group notably exploited a previously unknown SQL injection (SQLi) vulnerability in MOVEit's file-transfer application to steal data from companies. In 2023, they br
Clop Ransomware Group
3 updates this week.
140%
ransomware
clop
vulnerability
goanywhere
mft
exploit
zero-day
moveit
cve-2023-34362
cve-2023-0669
+28 other associations
The Clop ransomware group, a malicious threat actor in the cybersecurity landscape, has been actively exploiting vulnerabilities in software to execute their attacks. The group is known for its harmful activities that involve the execution of actions with malicious intent. They could be individuals,
fin11
2 updates this week.
33.33%
clop
ransomware
ta505
exploit
extortion
microsoft
malware
moveit
vulnerability
lace tempest
+52 other associations
FIN11, a threat actor group also known as Lace Tempest or TA505, has been linked to the development and deployment of Cl0p ransomware. This malicious software is believed to be a variant of another ransomware, CryptoMix, and is typically used by FIN11 to encrypt files on a victim's network after ste
Flax Typhoon
2 updates this week.
300%
apt
ethereal panda
vpn
malware
chinese
redjuliett
botnet
exploit
lateral move...
volt typhoon
+36 other associations
Flax Typhoon is a threat actor reportedly linked to China that has been actively targeting Taiwan, as well as other regions globally. This group, also known by aliases such as RedJuliett and Ethereal Panda, has been implicated in cyberespionage activities against critical infrastructure entities, go
Qilin
2 updates this week.
14.29%
ransomware
raas
lockbit
extortion
ransomhub
malware
ransom
akira
linux
data leak
+97 other associations
Qilin, a threat actor known for its malicious activities in the cyberspace, has been on the rise with an increase in victim count by 44% reaching 140 in Q3. This group is part of the Octo Tempest group which recently added RansomHub and Qilin ransomware to its arsenal, enhancing its capabilities to