Flocker is a ransomware group that emerged in April 2024, operating under a Ransomware-as-a-Service (RaaS) model and also known by the alias FSociety. While some sources link it to an earlier 2016 FSociety variant, the current iteration exhibits significant differences in its tactics and advanced ransomware tools. The group's primary motivation is financial gain through double extortion, where they not only encrypt victims' data but also threaten to leak sensitive information if ransom demands are not met. They distinguish themselves by forming alliances with other cybercriminal entities like FunkSec, leveraging combined strengths for more effective operations and distributing their malware to affiliates. This collaboration enables faster attack cycles by sharing resources such as botnets and initial access broker services. Flocker maintains a Telegram group and an Onion site for communication and operations. The group typically targets small to medium-sized enterprises.

URLs nuevas detectadas en IntelTracker