NoName057(16)
A threat profile of NoName057(16), a pro-Russian hacktivist group known for politically motivated DDoS campaigns targeting European governments, media, and infrastructure during the Ukraine conflict.
Anonymous
A threat profile of Anonymous, the decentralised hacktivist collective known for ideologically driven cyber operations, including DDoS attacks, data leaks, and defacement campaigns against governments and corporations.
Ghostwriter / UNC1151
A threat profile of Ghostwriter (UNC1151), a Belarus-aligned cyber influence operation and espionage actor targeting NATO states through credential theft, disinformation, and psychological operations.
Gallium
A threat profile of Gallium, a China-based cyber espionage group known for targeting telecommunications, government, and critical infrastructure across Asia, Europe, and the Middle East.
Sandworm
A threat profile of Sandworm, a destructive Russian GRU-linked cyber group responsible for attacks on Ukraine’s power grid, the NotPetya worm, and persistent campaigns targeting critical infrastructure across Europe.
TA406 / Phosphorus
A threat profile of TA406 (Phosphorus), an Iranian state-aligned threat group specialising in spear-phishing, credential harvesting, and long-term espionage against government, defence, and academic institutions.
Charming Kitten (APT35)
A threat profile of Charming Kitten (APT35), an Iranian state-aligned cyber espionage group known for credential harvesting, social engineering, and targeting academics, NGOs, and policymakers worldwide.
Everest Ransomware Group – Threat Actor Profile
An analysis of Everest, a data-extortion ransomware group operating on a double extortion model, targeting professional services, healthcare, and finance.
