> DawnofDevil
PRIMARY ROLE: Vulnerability Seller and Dark Web Market Operator
MOTIVATION: Financial
TARGETS: Global Government, Public Sector, and ISPs
Click to View Full TTPs...
> Scattered Spider [SE]
PRIMARY ROLE: Social Engineering Specialist / IAB
MOTIVATION: Financial (Extortion via SIM Swapping/MFA Bypass)
TARGETS: Telecommunications, Technology (Cloud Platforms), Hospitality
Click to View Full TTPs...
> Volt Typhoon
PRIMARY ROLE: Nation-State Actor (China) / Espionage and Pre-positioning
MOTIVATION: Espionage/Disruption
TARGETS: US Critical Infrastructure (Maritime, Comms, Water), Government
Click to View Full TTPs...
> Cuba Ransomware
PRIMARY ROLE: Ransomware as a Service (RaaS) Operator
MOTIVATION: Financial
TARGETS: US Critical Infrastructure, Financial, Government
Click to View Full TTPs...
> IntelBroker
PRIMARY ROLE: Initial Access Broker (IAB) and Mass Data Seller
MOTIVATION: Financial
TARGETS: US Gov, Technology (Cloud/SaaS), and Telecoms
Click to View Full TTPs...
> Wizard Spider
PRIMARY ROLE: Financial Crime Group / Malware Developer
MOTIVATION: Financial (Banking Fraud, RaaS Enablement)
TARGETS: Financial Institutions, Healthcare, Enterprises (Global)
Click to View Full TTPs...