Common Information
| Type | Value |
|---|---|
| Value |
ALPHV Ransomware Group |
| Category | Actor |
| Type | Threat-Actor |
| Misp Type | Cluster |
| Description | ALPHA SPIDER is a threat actor known for developing and operating the Alphv ransomware as a service. They have been observed using novel offensive techniques, such as exploiting software vulnerabilities and leveraging legitimate administration tools for malicious activities. ALPHA SPIDER affiliates have demonstrated persistence in exfiltrating data and have shown the ability to bypass security measures like DNS-based filtering and multifactor authentication. Despite lacking specific operational security measures, defenders have opportunities to detect and respond to ALPHA SPIDER's operations effectively. |
| Details | Published | Attributes | CTI | Title | ||
|---|---|---|---|---|---|---|
| Details | Website | 2024-11-01 | 0 | Change Healthcare Cyberattack Affected 100 Million Individuals | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #ransomware | National Cyber Security Consulting | ||
| Details | Website | 2024-10-30 | 64 | Inside Intelligence Center: LUNAR SPIDER Enabling Ransomware Attacks on Financial Sector with Brute Ratel C4 and Latrodectus | ||
| Details | Website | 2024-09-07 | 1 | 2024-08-30 Cicada ESXi Ransomware Sample | ||
| Details | Website | 2024-09-02 | 2 | A new variant of Cicada ransomware targets VMware ESXi systems | ||
| Details | Website | 2024-02-05 | 4 | Risky Biz News: Two Iranian cyber groups get doxed in a week | ||
| Details | Website | 2024-01-22 | 8 | Risky Biz News: SVR hackers breach Microsoft, steal emails from the security team | ||
| Details | Website | 2023-12-08 | 0 | HTC confirms cyber attack | ||
| Details | Website | 2023-11-17 | 46 | Scattered Spider: Leveraging Social Engineering for Extortion - CISA Alert AA23-320A | ||
| Details | Website | 2023-11-17 | 3 | The Good, the Bad and the Ugly in Cybersecurity - Week 46 | ||
| Details | Website | 2023-11-16 | 0 | An Inside Look at Ransomware’s Record-Breaking Pace in 2023 - Cybersecurity Insiders | ||
| Details | Website | 2023-11-07 | 0 | Offensive and Defensive AI: Let’s Chat(GPT) About It | ||
| Details | Website | 2023-11-07 | 0 | Confirmed: Japan Aviation Electronics Industry Hit by ALPHV Ransomware Attack | ||
| Details | Website | 2023-11-06 | 0 | ALPHV Group Intensifies Attack on Advarra, Claims to Leak Intimate Photos of Female Executives | ||
| Details | Website | 2023-11-06 | 0 | Medical research data Advarra stolen after SIM swap | Malwarebytes | ||
| Details | Website | 2023-11-06 | 0 | ALPHV Ransomware Group Expands Victim List: Currax Pharmaceuticals Targeted | ||
| Details | Website | 2023-11-03 | 0 | BlackCat ransomware claims breach of healthcare giant Henry Schein - RedPacket Security | ||
| Details | Website | 2023-11-02 | 2 | Okta Breach Threat Intel Advisory | ||
| Details | Website | 2023-11-02 | 0 | BlackCat ransomware claims breach of healthcare giant Henry Schein | ||
| Details | Website | 2023-11-01 | 0 | Ransomware attacks set to break records in 2023 - Help Net Security | ||
| Details | Website | 2023-10-27 | 0 | ALPHV’s Latest Cyberattack Claim Targets CBS Eastern Europe | ||
| Details | Website | 2023-10-17 | 14 | Johnson Controls Ransomware Attack; McLaren Health Care Data Breach; Unpatched Exim Vulnerability; Lazarus LinkedIn Attack; NATO Cyber Breach | ||
| Details | Website | 2023-10-10 | 0 | Florida Circuit Court,Victim of a Ransomware Attack | ||
| Details | Website | 2023-09-28 | 16 | The security pitfalls of social media sites offering ID-based authentication | ||
| Details | Website | 2023-09-25 | 0 | BlackCat Shows Its Claws | ||
| Details | Website | 2023-09-21 | 1 | MGM Resorts Operations Resume 10 Days After Cyberattack |