PanelActoresCampanasMapaTTPs
Panel » Actores » cipherforce
ArsenalExploitsTTP MatrixKillChainMapaActoresSSLBLRansomLookRansomwhereAlertasCyberNews
cipherforce logo

cipherforce

7 incidentes 5 paises 3 sectores ransomware VN Ultimo: 2026-06-25
Ver en IntelTracker → APTTrail →
CipherForce is the proprietary ransomware operation of TeamPCP, a financially motivated cybercrime collective first observed in late 2025. This group officially emerged around February 2026, distinguishing itself through a dual-track monetization model that includes its own ransomware campaigns and partnerships with other ransomware-as-a-service groups like Vect. TeamPCP, which operates CipherForce, is notable for pioneering sophisticated supply chain attacks, particularly targeting open-source security tooling and continuous integration/continuous deployment (CI/CD) pipelines to harvest credentials at scale. The collective describes itself as a loose-knit group of individuals who couldn't find conventional employment, operating under multiple aliases including PCPcat, ShellForce, DeadCatx3, and Persy_PCP, and is tracked by Google's Threat Intelligence Group as UNC6780. Their unique approach involves weaponizing security tools to gain initial access, feeding a broader credential moneti

RansomLook pivots

Data, inteligencia y referencias externas para contrastar actividad ransomware del actor.

Abrir perfil →
Data
RecentBrowseTrendingStats
Intel
GroupURLsCryptoLeaksNotesAnalysesTorrents
Info
APIGlossaryAbout
Victimas
6
TTPs unicas
0
Info robada historica
N/D
Rescates reclamados
N/D
Pagos detectados
N/D

Paises afectados

United States (2) United Arab Emirates (1) India (1) Vietnam (1) China (2)

Paises objetivo (SOCRadar)

United Arab EmiratesAustraliaCanadaSwitzerlandChinaGermanyIndiaIran, Islamic Republic ofKorea, Republic ofNetherlands

Sectores atacados

Transportation/Logistics (1) Technology (4) Business Services (1)

Sectores objetivo (SOCRadar)

Construction of BuildingsFood ManufacturingOther Information ServicesSoftware PublishersManufacturingConstructionPublic AdministrationEducational ServicesData Processing ServicesInternet Publishing

URLs nuevas detectadas en IntelTracker

ransomware.anggipradana.com

Victimas (6)

Accuick23 Feb 2026
Ransomware United States
Resumen Accuick es una alerta de ransomware asociada al grupo cipherforce, reportada el 2026-02-23. Esta notificación indica la presencia de un ataque…
Zip24 - ShipOx23 Feb 2026
Ransomware United Arab Emirates Transportation/Logistics
Resumen Zip24 - ShipOx es una alerta de ransomware atribuida al grupo cibernético cipherforce, que ha sido identificado como un atacante activo en el …
tektreeinc.com23 Feb 2026
Ransomware India Technology
Resumen Tektreeinc.com ha sido identificada como una empresa afectada por un ataque de ransomware atribuido al grupo cipherforce. El incidente ocurrió…
FindNear23 Feb 2026
Ransomware Vietnam Technology
Resumen FindNear es una empresa de tecnología basada en ubicación que ofrece soluciones para localizar servicios como tiendas, restaurantes y hoteles.…
Biaodianyun Group Ltd23 Feb 2026
Ransomware China Technology
Resumen Biaodianyun Group Ltd ha sido asociada con un ataque de ransomware atribuido al grupo cipherforce, según la alerta publicada el 2026-02-23. El…
hiringsteps.com23 Feb 2026
Ransomware United States Business Services
Resumen HiringSteps.com, una plataforma de reclutamiento en la nube, ha sido identificada como un objetivo potencial de ataque por el grupo cipherforc…