Black Shadow is a politically motivated cyber-espionage and extortion group assessed with high confidence to be linked to Iranian government interests, specifically attributed to Iran's Ministry of Intelligence and Security. The group emerged with observable activity dating back to early 2019, gaining public notoriety in late 2020 through a series of high-profile attacks against Israeli entities. Unlike typical financially motivated ransomware operations, Black Shadow often employs a hybrid motivation, combining financial extortion with information operations aimed at disruption and public shaming, particularly targeting Israeli citizens and organizations. A defining characteristic of the group is its strategic use of media exploitation, leveraging Telegram channels and news outlets to publicize breaches, leak sensitive data, and exert pressure on victims and their governments, often magnifying the perceived impact of their cyberattacks.

Paises afectados

Sectores atacados

URLs nuevas detectadas en IntelTracker