Dunghill is a financially motivated ransomware group, active since at least early 2023 as a data leak site (DLS) for the Dark Angels Team, a group that itself emerged in April 2022. While the group claims activity since 2019, verifiable evidence points to the Dunghill Leak DLS beginning in early 2023, with a rebrand to Dunghill occurring in April 2023. This group distinguishes itself through ruthless tactics and extensive use of double extortion methods, aggressively targeting high-value organizations and critical infrastructure. They are known for demanding substantial ransoms, including a record-breaking $75 million payment in 2024. The Dunghill Leak DLS is specifically used to publicize stolen data from victims who refuse to negotiate or pay ransoms, showcasing their commitment to escalating pressure tactics. The group is considered a spin-off or rebrand of the Dark Angels ransomware, which is a derivative of the Babuk ransomware.

Sectores atacados

URLs nuevas detectadas en IntelTracker