nevada
1 incidentes
0 paises
0 sectores
ransomware RU Ultimo: 2026-06-25
Verified intelligence from authoritative sources does not identify a distinct threat actor group formally named 'nevada'. The term 'Nevada ransomware' or 'Nevada group' in public reporting primarily refers to the perpetrators of a significant ransomware attack against the State of Nevada in 2025, which some experts speculate could be linked to groups like Scattered Spider, Lapsus$, or ShinyHunters. The primary motivation for this activity was financial extortion, characteristic of ransomware operations. The defining aspect of this incident was the use of sophisticated initial access techniques, specifically leveraging SEO poisoning and malicious advertisements to deliver malware, and the subsequent prolonged undetected presence within the network before ransomware deployment.
RansomLook pivots
Data, inteligencia y referencias externas para contrastar actividad ransomware del actor.
Paises objetivo (SOCRadar)
China
Germany
Finland
France
United Kingdom
Hungary
Italy
United StatesSectores objetivo (SOCRadar)
Construction of BuildingsMonetary Authorities-Central BankCredit UnionsManufacturingConstructionPublic AdministrationEducational ServicesData Processing ServicesInsuranceComputer Systems Design and Related Services