Radar, also widely known as Dispossessor, emerged as a criminal entity in August 2023, evolving from an initial phase where it primarily functioned as a data broker, republishing exfiltrated data from other ransomware groups such as LockBit, CL0P, Hunters International, and 8Base to pressure victims. This group transitioned to operating its own ransomware-as-a-service (RaaS) model, developing custom ransomware builds for its attacks. Radar is motivated by financial gain through dual-extortion tactics, involving both data encryption and exfiltration. What specifically sets Radar apart is its unique progression from a data broker leveraging other groups' stolen data to a full-fledged ransomware operation, mimicking the infrastructure and branding of prominent groups like LockBit. The group's activities were ultimately disrupted by a coordinated international law enforcement operation in August 2024, leading to the seizure of its global infrastructure.

Paises afectados

Sectores atacados

URLs nuevas detectadas en IntelTracker