> Akira Ransomware
PRIMARY ROLE: Ransomware as a Service (RaaS) Operator
MOTIVATION: Financial
TARGETS: Manufacturing, Education, Healthcare, IT, Public Health
Click to View Full TTPs...
> FIN7
PRIMARY ROLE: Financial Crime Group / RaaS Affiliate
MOTIVATION: Financial
TARGETS: Retail, Hospitality (POS), Financial Services
Click to View Full TTPs...
> Cl0p
PRIMARY ROLE: Extortion Group; Zero-Day File Transfer Specialist
MOTIVATION: Financial (Mass Data Theft Extortion)
TARGETS: Finance, Healthcare, Technology (MFT users)
Click to View Full TTPs...
> ShinyHunters
PRIMARY ROLE: Mass Data Broker and Extortion Group
MOTIVATION: Financial
TARGETS: Cloud Platforms (Snowflake, Salesforce), E-commerce, Tech
Click to View Full TTPs...
> LAPSUS$
PRIMARY ROLE: Data Extortion Group and Source Code Thief
MOTIVATION: Fame/Destruction/Extortion
TARGETS: Tech, Telecoms, Gaming (Microsoft, NVIDIA, Okta, Samsung)
Click to View Full TTPs...
> MedusaLocker
PRIMARY ROLE: Ransomware as a Service (RaaS) Operator
MOTIVATION: Financial
TARGETS: Healthcare, Manufacturing, High RDP Exposure
Click to View Full TTPs...