| ID | Votes | Profile Description |
|---|---|---|
| Conti | 4 | Conti is a notorious malware and ransomware operation that has caused significant damage to computer systems worldwide. The Conti group, believed to have around 200 employees, operated like a regular business, with internal communications revealing the organization's structure and operations. It was |
| Akira | 2 | Akira is a malicious software or malware that has been causing significant damage to various organizations and systems worldwide. The ransomware, known for its persistent and harmful attacks, has successfully infiltrated numerous systems, often without the knowledge of the users, disrupting operatio |
| Conti Team | 2 | The Conti team, a threat actor group known for its malicious activities in the cyber realm, has seen significant developments and transformations over recent years. In September 2022, a splinter group from Conti Team One resurfaced under the name Royal Ransomware, conducting callback phishing attack |
| Hive | 2 | Hive is a malicious software (malware) that has been used by the cybercriminal group, Hunters International, to launch ransomware attacks since October of last year. The group operates as a ransomware-as-a-service (RaaS) provider, spreading Hive rapidly through collaborations with less sophisticated |
| ID | Type | Votes | Profile Description |
|---|---|---|---|
| Ryuk | Unspecified | 2 | Ryuk is a type of malware known as ransomware, which has been utilized by the threat group ITG23 for several years. This group has been notorious for crypting their malware, with crypters seen in use with other malware such as Trickbot, Emotet, Cobalt Strike, and Ryuk. In 2019, most ransomware inves |
| TrickBot | Unspecified | 2 | TrickBot is a notorious malware that has been used extensively by cybercriminals to exploit and damage computer systems. It operates as a crimeware-as-a-service platform, infecting systems through suspicious downloads, emails, or websites, often without the user's knowledge. Once inside, it can stea |
| Black Basta | Unspecified | 2 | Black Basta is a notorious malware group known for its ransomware activities. The group has been active since at least early 2022, during which time it has accumulated an estimated $107 million in Bitcoin ransom payments. It leverages malicious software to infiltrate and exploit computer systems, of |
| Royal Ransomware | Unspecified | 2 | The Royal Ransomware, a harmful malware program designed to exploit and damage computer systems, operated from September 2022 through June 2023. It employed multi-threaded encryption to disrupt operations and hold data hostage for ransom. The ransomware was primarily disseminated through suspicious |
| Ghost | is related to | 2 | "Ghost" is a potent malware that has been plaguing the digital world. In 2020, the first signs of its impending threat emerged with the planning of a large bilateral CDU/MDANG Ex Cyber Ghost operation. However, it wasn't until Check Point Research (CPR) identified a network of GitHub accounts, dubbe |
| ID | Type | Votes | Profile Description |
|---|---|---|---|
| Alphv | is related to | 7 | Alphv is a threat actor group known for its malicious activities in the cyber world. They have been particularly active in deploying ransomware attacks, with one of their most significant actions being the theft of 5TB of data from Morrison Community Hospital. This act not only disrupted hospital op |
| LockBitSupp | is related to | 2 | LockBitSupp, also known as Dmitry Yuryevich Khoroshev, is a threat actor who has been identified as the creator and operator of one of the most prolific ransomware variants known as LockBit. Based in Voronezh, Russia, Khoroshev allegedly began developing LockBit as early as September 2019 and contin |
| ID | Type | Votes | Profile Description |
|---|---|---|---|
| Lockbit's Ghost | Unspecified | 2 | None |
| Preview | Source Link | CreatedAt | Title |
|---|---|---|---|
| CSO Online | 2 years ago | Backdoor deployment overtakes ransomware as top attacker action | |
| CERT-EU | 6 months ago | The effects of law enforcement takedowns on the ransomware landscape - Help Net Security | |
| CERT-EU | 6 months ago | The effects of law enforcement takedowns on the ransomware landscape - Help Net Security | |
| CERT-EU | 6 months ago | Ransomware Talent Surges to Akira After LockBit's Demise | |
| BankInfoSecurity | 6 months ago | Ransomware Talent Surges to Akira After LockBit's Demise | |
| BankInfoSecurity | 6 months ago | Stages of LockBit Grief: Anger, Denial, Faking Resurrection? | |
| CERT-EU | 6 months ago | Authorities Claim LockBit Admin "LockBitSupp" Has Engaged with Law Enforcement | #cybercrime | #infosec | National Cyber Security Consulting | |
| CERT-EU | 6 months ago | Operation Cronos: Who Are the LockBit Admins | |
| BankInfoSecurity | 6 months ago | No Big Reveal: Cops Don't Unmask LockBit's LockBitSupp | |
| BankInfoSecurity | 7 months ago | Who is LockBitSupp? Police Delay Promise to Reveal Identity | |
| CERT-EU | 7 months ago | LockBit Group Prepared New Crypto-Locker Before Takedown | #ransomware | #cybercrime | National Cyber Security Consulting | |
| BankInfoSecurity | 7 months ago | LockBit Group Prepared New Crypto-Locker Before Takedown | |
| BankInfoSecurity | 7 months ago | Broken LockBit: Ransomware Group Takedown Will Have Impact | |
| CERT-EU | 8 months ago | Researchers link 3AM ransomware to Conti, Royal cybercrime gangs | |
| CERT-EU | 8 months ago | Examples of Past and Current Attacks | #ransomware | #cybercrime | National Cyber Security Consulting | |
| CERT-EU | 2 years ago | Organizations Warned of Royal Ransomware Attacks | |
| MITRE | 9 months ago | Royal Rumble: Analysis of Royal Ransomware | |
| MITRE | 9 months ago | Royal Ransomware Deep Dive | Kroll | |
| CERT-EU | 9 months ago | TrickBot malware dev pleads guilty, faces 35 years in prison | |
| CERT-EU | 10 months ago | FBI and CISA Say the Royal Ransomware Group May Rebrand |