Pongo

Threat Actor Profile Updated 3 months ago
Download STIX
Preview STIX
Pongo is a threat actor identified in the cybersecurity world for its malicious activities. The persona "Pongo" first came to light in 2023 when it was discovered as an active participant on Breach Forums, an English-language dark web forum known for illicit activities. Pongo, however, distinguished itself from other threat actors by openly admitting its fraudulent operations rather than maintaining anonymity or denying involvement. On March 2nd, Pongo issued a statement revealing the group's true nature and activities. Contrary to earlier speculations, Pongo clarified that they were not a Ransomware as a Service (RaaS) operation but self-proclaimed "professional fraudsters." They claimed to have successfully executed multiple scams, including extracting $16,000 from individuals paying for access to a non-existent ransomware called Mogilevich, $7,000 from people believing they were purchasing stolen cryptocurrency accounts, and a significant $85,000 from an individual who thought they were buying sensitive exfiltrated data. In a surprising move, Pongo didn't just confess their fraudulent activities but also provided insights into their scamming process. When questioned about the reason behind this revelation, Pongo stated that it was done to illustrate their scam's mechanics. They further described themselves not as hackers, but as "criminal geniuses." This open admission and detailed explanation of their operations reflect a unique approach among threat actors, which typically operate covertly. Such transparency underscores the evolving dynamics within the cybercrime landscape.
What's your take? (Question 1 of 2)
Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.
Possible Aliases / Cluster overlaps
It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at.
IDVotesProfile Description
Mogilevich
1
Mogilevich, a self-proclaimed "group dedicated to data extortion," emerged on February 20th and made claims of high-profile cyber attacks. Their alleged victims included Infiniti, Epic Games, DJI, and Shein. The group gained notoriety for their audacious claims of successful ransomware attacks, incl
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Scam
Ransomware
Associated Malware
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Threat Actors
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Vulnerabilities
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Source Document References
Information about the Pongo Threat Actor was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
SourceCreatedAtTitle
CERT-EU
5 months ago
Mogilevich, A Supossed Ransomware Gang, Admits Epic Games Hack Was A Scam - | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #ransomware | National Cyber Security Consulting
CERT-EU
5 months ago
A Fake Ransomware Gang Claims It Extorted $85K, Calls Themselves Criminal Geniuses | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #ransomware | National Cyber Security Consulting
CERT-EU
5 months ago
Hacker group admits Epic Games breach was scam to catch other criminals | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #hacker | National Cyber Security Consulting
CERT-EU
4 months ago
GRIT Ransomware Report: February 2024 | #ransomware | #cybercrime | National Cyber Security Consulting