x001xs is a low-profile ransomware group documented to have engaged in ransomware operations starting in late 2021, employing double-extortion tactics against various international sectors, including healthcare. A defining characteristic of this group is its observable pivot away from ransomware activities around January 2022, when its associated Tor service redirected to a darknet credit card provider known as BitCarder. Their primary motivation is financial gain, initially through encrypting and exfiltrating data, and later through other illicit financial ventures, distinguishing them by their adaptive operational model.

URLs nuevas detectadas en IntelTracker