BlackMatter is a Ransomware-as-a-Service (RaaS) collective that emerged in mid-2021, filling the operational void left by the earlier disappearances of the DarkSide and REvil ransomware groups. The group quickly became known for targeting large organizations for significant financial gain through double extortion tactics. BlackMatter is widely assessed to be a Russian-speaking entity, consistently adhering to a policy of not targeting organizations within Russia or other Commonwealth of Independent States (CIS) countries. What distinguishes BlackMatter is its strategic amalgamation of the most effective features from DarkSide, REvil, and LockBit ransomware, creating a highly potent and adaptable threat. The group explicitly focused on entities with annual revenues exceeding $100 million and networks with 500 to 15,000 hosts, while controversially claiming to avoid critical infrastructure sectors such as healthcare, oil and gas pipelines, and government organizations. BlackMatter is con

URLs nuevas detectadas en IntelTracker