Uptime Hamster: 15d 3h 5mDeploy: 13 Jul 2026 08:04Updated: 2026-07-14
Logo del actor de amenaza Group Space Bears

Group Space Bears

0 incidentes 0 paises 0 sectores ransomware RU Ultimo: -
Ver en IntelTracker → APTTrail →
Group Space Bears is a ransomware group that first appeared in April 2024, notable for its distinctive "corporate" presentation on its dark web leak site, which employs stock images and offers "guarantees" to victims. The group operates as an affiliate of the Phobos ransomware-as-a-service (RaaS) group, leveraging its infrastructure and tools. Primarily driven by financial gain, Group Space Bears utilizes double extortion tactics to pressure victims into paying ransoms, frequently targeting small to medium-sized organizations. While some analyses suggest a reliance on basic extortion strategies rather than highly sophisticated malware, the group’s unique public-facing persona sets it apart from other ransomware operators.

Actores similares

spacebearsransomware · 28space-bearsactor · 12APT29 (Cozy Bear)actor · 1Saint Bearactor · 1energetic-bearactor · 1ember-bearactor · 1Energetic Bearapt · 0Boulder Bearapt · 0Pat Bearapt · 0White Bearapt · 0
Tipo
ransomware
Pais origen
RU
Motivacion
-
Impacto
61
Actualizado
Fri, 19 Ju

Paises objetivo (SOCRadar)

United Arab EmiratesAustraliaBosnia and HerzegovinaBrazilCanadaCôte d'IvoireCameroonGermanyEcuadorSpain

Sectores objetivo (SOCRadar)

Construction of BuildingsFood ManufacturingOther Information ServicesSoftware PublishersAccommodationAir TransportationManufacturingConstructionPublic AdministrationOil & Gas