KelvinSecurity emerged as a financially motivated cybercrime group around 2013, primarily focusing on data theft and extortion, though they have been associated with ransomware activities. The group is largely composed of individuals of South American origin, with its alleged leader, a Venezuelan national, having been arrested in Spain in late 2023. While occasionally attempting to position themselves as ethical penetration testing services, KelvinSecurity's operations involve exploiting vulnerabilities to exfiltrate sensitive data, which they then sell on dark web forums or use for extortion, often threatening public leaks if demands are not met. The group operates under several aliases including ATK140, KelvinSec Team, KelvinSecTeamGobVe, and TAG-CR6, and is distinguished by its blend of data exfiltration and extortion tactics that sometimes include ransomware deployment.

Sectores atacados

URLs nuevas detectadas en IntelTracker