SYMBOL | COMMON_NAME | aka. SYNONYMS |
Crowdstrike Tracks the criminal developer of Nemty ransomware as TRAVELING SPIDER. The actor has been observed to take advantage of single-factor authentication to gain access to victim organizations through Citrix Gateway and send extortion-related emails using the victim’s own Microsoft Office 365 instance.
There are currently no families associated with this actor.
2021-04-27 ⋅ CrowdStrike ⋅ Ransomware Preparedness: A Call to Action Dharma GlobeImposter Maze Phobos CIRCUS SPIDER TRAVELING SPIDER |
2020-06-24 ⋅ CyberScoop ⋅ Hackers are still running coronavirus-related campaigns, CrowdStrike warns TRAVELING SPIDER |
2020 ⋅ CrowdStrike ⋅ Cyber Front Lines Report OUTLAW SPIDER TRAVELING SPIDER |