Uptime Hamster: 15d 0h 44mDeploy: 13 Jul 2026 08:04Updated: 2026-07-14
Logo del actor de amenaza bluebox

bluebox

2 incidentes 2 paises 0 sectores ransomware Ultimo: 2026-06-29
Ver en IntelTracker → APTTrail →
Bluebox is a data extortion group that emerged in early December 2024, operating a data leak site (DLS) to pressure victims into paying ransoms. The group's primary motivation is financial, and it distinguishes itself by threatening to notify data protection authorities in victims' countries to amplify pressure for payment. While the group claims to delete stolen data upon successful ransom payment, there is no public indication they use file encryption. The group's name derives from a historical phreaking tool, and it is important not to confuse this threat actor with legitimate cybersecurity products or companies also named Bluebox.

Canales, DLS e infraestructura asociada

Clasificacion automatica desde IntelTracker/APTTrail/OSINT. Estado real solo si viene indicado por la fuente.

TipoEstadoHost / enlaceTitle / ultimo titulo
DLS / leak siteunknownransomware.anggipradana.comRansomware Group: bluebox
Victimas
0
TTPs unicas
0
Info robada historica
N/D
Rescates reclamados
N/D
Pagos detectados
N/D

Paises afectados

United States (1) France (1)

Paises objetivo (SOCRadar)

FranceGuadeloupeSwedenVenezuela, Bolivarian Republic of

Sectores objetivo (SOCRadar)

ConstructionManufacturingWholesale TradeTransportation&WarehousingProfessional&Technical ServicesEnterprises & HoldingAccommodation&Food ServicesConstruction of BuildingsElectrical&Electronical ManufacturingElectrical Equipment, Appliance, and Component Manufacturing

URLs nuevas detectadas en IntelTracker

ransomware.anggipradana.com