[threat-actors] Add Storm-0829

This commit is contained in:
Mathieu4141 2024-02-01 11:02:05 -08:00
parent 7607dc70cf
commit 0b571d7e76

View file

@ -14679,6 +14679,23 @@
}, },
"uuid": "3a912680-6f38-4fe7-9941-744f0e2280b3", "uuid": "3a912680-6f38-4fe7-9941-744f0e2280b3",
"value": "Storm-1567" "value": "Storm-1567"
},
{
"description": "Nwgen is a group that focuses on data exfiltration and ransomware activities. They have been found to share techniques with other threat groups such as Karakurt, Lapsus$, and Yanluowang. Nwgen has been observed carrying out attacks and deploying ransomware, encrypting files and demanding a ransom of $150,000 in Monero cryptocurrency for the decryption software.",
"meta": {
"refs": [
"https://www.enigmasoftware.com/nwgenransomware-removal/",
"https://www.databreaches.net/east-tennessee-childrens-hospital-updates-information-on-ransomware-incident/",
"https://readme.security/cybercrime-is-more-of-a-threat-than-nation-state-hackers-6f6cccf47721",
"https://twitter.com/cglyer/status/1546297609215696897"
],
"synonyms": [
"DEV-0829",
"Nwgen Team"
]
},
"uuid": "3e595289-05b8-43fc-bd88-f8650436447f",
"value": "Storm-0829"
} }
], ],
"version": 298 "version": 298