From f4f7ba626415bef971a6e0e19554c95f431c4787 Mon Sep 17 00:00:00 2001
From: Mathieu4141 <mathieu@feedly.com>
Date: Tue, 12 Nov 2024 06:58:58 -0800
Subject: [PATCH] [threat-actors] Add TOXCAR CYBER TEAM

---
 clusters/threat-actor.json | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/clusters/threat-actor.json b/clusters/threat-actor.json
index e6865f1..7ce2d6d 100644
--- a/clusters/threat-actor.json
+++ b/clusters/threat-actor.json
@@ -17283,6 +17283,16 @@
       },
       "uuid": "fa65c8b2-50ce-4dea-86a3-8c6b960ce1dd",
       "value": "Evilbyte"
+    },
+    {
+      "description": "The Toxcar Cyber Team has claimed responsibility for a data leak involving Mastercard, asserting that the attack targeted the U.S. site and providing screenshots as purported evidence. They have also been linked to the sale of an undetectable ransomware designed to bypass major antivirus software. Additionally, the group has shared the source code of Elusive Stealer, a data theft malware. Their activities highlight a focus on data breaches and malware distribution within the cyber threat landscape.",
+      "meta": {
+        "refs": [
+          "https://socradar.io/mastercard-data-leak-new-fully-undetectable-ransomware-elusive-stealer-source-code-leak-and-more/"
+        ]
+      },
+      "uuid": "8a67a86f-48d2-4dd0-824c-22fcfa9bf09d",
+      "value": "TOXCAR CYBER TEAM"
     }
   ],
   "version": 320