BlackCat
1 incidentes
1 paises
1 sectores
ransomware RU Ultimo: 2026-06-18
Aliases: AlphaVM, Noberus, ALPHV, se relaciona con identificadores de Microsoft como DEV-0237, DEV-0504
BlackCat, also known as ALPHV or Noberus, emerged in mid-November 2021 as a sophisticated Ransomware-as-a-Service (RaaS) operation, succeeding groups like DarkSide and BlackMatter. The group, assessed with moderate confidence to be of Russian-speaking origin and likely based in a Commonwealth of Independent States (CIS) country, is financially motivated. BlackCat notably differentiates itself by being the first major ransomware written in the Rust programming language, which enables cross-platform compatibility and evasion of some traditional security detections. The group also pioneered establishing a public data leak site on the open internet, not just the dark web, to exert additional pressure on victims. Their extortion model often extends to triple extortion, incorporating Distributed Denial-of-Service (DDoS) attacks alongside data encryption and public data leaks. BlackCat offers high payouts, typically 80-90% of ransoms, to its affiliates, distinguishing its business model withi
Canales, DLS e infraestructura asociada
Clasificacion automatica desde IntelTracker/APTTrail/OSINT. Estado real solo si viene indicado por la fuente.
Paises objetivo (SOCRadar)
United Arab EmiratesAlbaniaAngola
Argentina
Austria
AustraliaAruba
AzerbaijanBosnia and Herzegovina
Bangladesh
Sectores atacados
Media (1)
Sectores objetivo (SOCRadar)
Construction of BuildingsFood ManufacturingOther Information ServicesRail TransportationSoftware PublishersTransit and Ground Passenger TransportationReal EstateHospitalsTransportation Equipment ManufacturingWaste Management and Remediation Services
URLs nuevas detectadas en IntelTracker