Dark Basin
0 incidentes
0 paises
0 sectores
apt IN Ultimo: -
Dark Basin is a hack-for-hire cyber espionage group that first emerged around 2013, though its widespread operations were publicly exposed by Citizen Lab in June 2020. The group operates out of India, closely linked to the company BellTroX InfoTech Services. Their primary motivation is commercial espionage, conducting targeted information gathering for clients involved in legal, financial, or political disputes. What distinguishes Dark Basin is its extensive and methodical use of custom URL shorteners to facilitate widespread spear-phishing campaigns, alongside a notable pattern of some BellTroX employees brazenly leaving evidence of their activities, such as phishing kit source code and log files, openly accessible online. They have also been tracked under the alias Mercenary.Amanda by NortonLifeLock.
Canales, DLS e infraestructura asociada
Clasificacion automatica desde IntelTracker/APTTrail/OSINT. Estado real solo si viene indicado por la fuente.
| Tipo | Estado | Host / enlace | Title / ultimo titulo |
| DLS / leak site | unknown | citizenlab.ca | Dark Basin indicators and references |
| Repositorio | unknown | github.com | Dark Basin indicators and references |
| DLS / leak site | unknown | www.nortonlifelock.com | Dark Basin indicators and references |
| Repositorio | unknown | github.com | Dark Basin indicators and references |
| DLS / leak site | unknown | raw.githubusercontent.com | Dark Basin indicators and references |
| Repositorio | unknown | citizenlab.ca | Dark Basin indicators and references |
Sectores objetivo (SOCRadar)
Information ServicesFinanceProfessional&Technical ServicesPublic AdministrationNational Security&International AffairsNewspaper PublishersOffices of Lawyers