jordiserrano.me ClickFix KAIROS IntelTracker

Ransomware Group: darkside

Threat-actor 25 Jun 2026 1 min lectura darkside

Fecha

25 Jun 2026

Actor

darkside

Tipo

Threat-actor

Pais

United States

Sector

Confianza

high

Prioridad analitica

Baja

Basado en actor, pais, IOCs, TTPs, filtracion y calidad de contexto.

0IOCs

0TTPs

darksideActor

United StatesPais

Executive Summary

Perfil del grupo segun ransomware.anggipradana.com.

Key Points

Ransomware Dashboard

Grupo Ransomware: darkside

Perfil del grupo segun ransomware.anggipradana.com.

Campo	Valor
Alias
Pais
Estado

Descripcion

Darkside ransomware group has started its operation in August of 2020 with the model of RaaS (Ransomware-as-a-Service). They have become known for their operations of large ransoms scale. They have announced that they prefer not to attack hospitals, schools, non-profits, and governments, but rather big organizations that can be able to pay large ransoms. Darkside ransomware group became very famous following the cyberattack of the Colonial Pipeline and Toshiba unit. The FBI finally terminate the Darkside operation and Managed to pull money from their wallets back.

Referencias

Ransomware Dashboard

Diamond Model

Adversary

darkside

Ver perfil →

Victim

Ransomware Group: darkside

United States

Capability

Threat-actor

Infrastructure

Sin infraestructura confirmada

Relations

Mapa de nodos relacionados por IOCs compartidos, actor, enlaces IntelTracker/OSINT, campanas y victimas observadas. Haz click en un nodo para abrir el post, filtro o fuente.

1 enlaces

IntelTracker / OSINT link

ransomware.anggipradana.com

darkside

enlace asociado al actor

Nodo actual

Ransomware Group: darkside

darkside · United States