Crowdstrike Tracks the criminal developer of Nemty ransomware as TRAVELING SPIDER. The actor has been observed to take advantage of single-factor authentication to gain access to victim organizations through Citrix Gateway and send extortion-related emails using the victim’s own Microsoft Office 365 instance.
There are currently no families associated with this actor.
|2021-04-27 ⋅ CrowdStrike ⋅ |
Ransomware Preparedness: A Call to Action
Dharma GlobeImposter Maze Phobos CIRCUS SPIDER TRAVELING SPIDER
|2020-06-24 ⋅ CyberScoop ⋅ |
Hackers are still running coronavirus-related campaigns, CrowdStrike warns
|2020 ⋅ CrowdStrike ⋅ |
Cyber Front Lines Report
OUTLAW SPIDER TRAVELING SPIDER