Impotent

Threat Actor Profile Updated 3 months ago
Download STIX
Preview STIX
Impotent, a threat actor co-founded by individuals known as "Impotent" and "Purism," has been involved in various cybersecurity incidents that have raised concerns within the industry. On May 29, 2023, Impotent, who also served as the forum administrator for Exposed, leaked a database containing information of 478,870 Raid Forums users. This act signaled a significant escalation in their activities, demonstrating both their capabilities and willingness to expose large amounts of user data. Furthermore, the founders announced their decision to cease supporting the development of Exposed Forums, warning against the use of the new Breach Forums due to operational security risks. In addition to these actions, one of the former main administrators of the forum, known as "Frost," disclosed plans to create a new forum separate from PwnedForum. However, no specific timeline was provided for this development. This could potentially lead to the emergence of another platform that might be used for malicious purposes, further complicating the cybersecurity landscape. The threat actor Impotent is also linked to an account that has been permanently banned on the forum for "scamming." Further investigations have revealed connections between this persona and several others used by Impotent, the administrator responsible for RansomedVC (also briefly known as Raznatovic) and ExposedForum. Additionally, there are concerns about potential misuse of certificates from an EU-approved authority, particularly in cases of interception by a state actor using a "man in the middle attack." In such instances, web browsers would be unable to take countermeasures or distrust the Qualified Website Authentication Certificates (QWACs) in question, highlighting the serious implications of Impotent's activities.
What's your take? (Question 1 of 3)
Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.
Possible Aliases / Cluster overlaps
It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at.
IDVotesProfile Description
RansomedVC
1
RansomedVC, a new threat actor in the cybersecurity landscape, has emerged as a significant concern due to its unorthodox approaches and deceptive tactics. This group is suspected to be an enterprise of a single individual threat actor, who has previously been associated with other cybercrime operat
Raznatovic
1
None
Exposedforum
1
None
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Eu
Associated Malware
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Threat Actors
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Vulnerabilities
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Source Document References
Information about the Impotent Threat Actor was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
SourceCreatedAtTitle
CERT-EU
a year ago
Eracent Will Provide Its World-Class SBOM Management Application at No Cost to Any HCP | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #ransomware – National Cyber Security Consulting
Flashpoint
a year ago
Lost in Transition: A Timeline of Failed Successors to Breach and Raid Forums
CERT-EU
7 months ago
eIDAS: EU’s internet reforms will undermine a decade of advances in online security - Help Net Security
CERT-EU
4 months ago
GRIT Ransomware Report: February 2024 | #ransomware | #cybercrime | National Cyber Security Consulting