Cooming, also identified as CoomingProject, is a ransomware group that first appeared around 2021, operating a double-extortion model where they encrypted data and threatened to publish stolen sensitive information if ransoms were not paid. The group gained attention in early 2022 for publicly declaring war against entities engaged in cyber warfare against Russia, a unique characteristic that differentiated them from purely financially motivated groups despite their primary objective of monetary gain. Their operations ceased following the identification of six members by French authorities in February 2022, which led to their infrastructure being taken offline. While they primarily pursued financial objectives through substantial ransom demands, their brief foray into geopolitical statements during their operational period set them apart from other contemporary ransomware actors.

URLs nuevas detectadas en IntelTracker