| SYMBOL | COMMON_NAME | aka. SYNONYMS |
Storm-1567 is the threat actor behind the Ransomware-as-a-Service Akira. They attacked Swedish organizations in March 2023. This ransomware utilizes the ChaCha encryption algorithm, PowerShell, and Windows Management Instrumentation (WMI). Microsoft's Defender for Endpoint successfully blocked a large-scale hacking campaign carried out by Storm-1567, highlighting the effectiveness of their security solution.
| 2025-05-08
⋅
DataBreaches.net
⋅
Negotiations with the Akira ransomware group: an ill-advised approach Akira |
| 2025-05-05
⋅
Security Chu
⋅
Negotiations with the Akira ransomware group: an ill-advised approach Akira Akira |
| 2025-04-24
⋅
Mandiant
⋅
M-Trends 2025 Report Akira Black Basta LockBit SystemBC GootLoader LockBit WIREFIRE Akira Black Basta Cobalt Strike LockBit RansomHub SystemBC Pink Sandstorm |
| 2025-03-13
⋅
Tinyhack.com
⋅
Decrypting Encrypted files from Akira Ransomware (Linux/ESXI variant 2024) using a bunch of GPUs Akira |
| 2025-03-07
⋅
MalwareAnalysisSpace
⋅
Akira Ransomware Expands to Linux: the attacking abilities and strategies Akira |
| 2025-01-08
⋅
ThreatMon
⋅
Akira Ransomware Group & Malware Analysis Report Akira |
| 2024-12-03
⋅
Check Point Research
⋅
Inside Akira Ransomware’s Rust Experiment Akira |
| 2024-11-04
⋅
Medium (@DCSO_CyTec)
⋅
Unransomware: From Zero to Full Recovery in a Blink Akira |
| 2024-10-24
⋅
Arctic Wolf
⋅
Arctic Wolf Labs Observes Increased Fog and Akira Ransomware Activity Linked to SonicWall SSL VPN Akira Akira |
| 2024-09-11
⋅
loginsoft
⋅
Akira Ransomware: The Evolution of a Major Threat Akira Akira |
| 2024-06-19
⋅
Akira: The old-new style crime Akira |
| 2024-05-14
⋅
S-RM
⋅
Breaking new ground? Uncovering Akira's privilege escalation techniques Akira |
| 2024-01-04
⋅
Arctic Wolf
⋅
Follow-On Extortion Campaign Targeting Victims of Akira and Royal Ransomware Akira Royal Ransom |
| 2023-12-20
⋅
Sophos X-Ops
⋅
CryptoGuard: An asymmetric approach to the ransomware battle Akira LockBit Storm-1567 |
| 2023-12-13
⋅
Kaspersky Labs
⋅
FakeSG campaign, Akira ransomware and AMOS macOS stealer AMOS Akira Storm-1567 |
| 2023-11-29
⋅
Trellix
⋅
Akira Ransomware Akira Akira Storm-1567 |
| 2023-11-29
⋅
Trellix
⋅
Akira Ransomware Akira |
| 2023-11-28
⋅
Intrinsec
⋅
Aki-RATs – Command and Control Party Akira |
| 2023-10-11
⋅
Microsoft
⋅
Automatic disruption of human-operated attacks through containment of compromised user accounts Akira Akira |
| 2023-09-15
⋅
CyberCX
⋅
Weaponising VMs to bypass EDR – Akira ransomware Akira |
| 2023-09-14
⋅
Sekoia
⋅
Sekoia.io mid-2023 Ransomware Threat Landscape 8Base Akira Cactus Storm-1567 |
| 2023-08-23
⋅
Stairwell
⋅
Akira: Pulling on the chains of ransomware Akira |
| 2023-08-10
⋅
Avast Decoded
⋅
Unveiling the Dominance of Scams Amidst a 24% Surge in Blocked Attacks Storm-1567 |
| 2023-07-27
⋅
Bankinfo Security
⋅
Are Akira Ransomware's Crypto-Locking Malware Days Numbered? Akira Ryuk |
| 2023-07-26
⋅
Arctic Wolf
⋅
Conti and Akira: Chained Together Akira Conti |
| 2023-07-25
⋅
K7 Security
⋅
Akira’s Play with Linux Akira |
| 2023-06-29
⋅
Avast Decoded
⋅
Decrypted: Akira Ransomware Akira |
| 2023-05-09
⋅
Sophos
⋅
Akira Ransomware is “bringin’ 1988 back” Akira |
| 2023-04-28
⋅
Twitter (@MalGamy12)
⋅
Tweet explaning similarity between Conti and Akira code Akira |