Uptime Hamster: 15d 7h 57mDeploy: 13 Jul 2026 08:04Updated: 2026-07-05
Logo del actor de amenaza kelvinsecurity

kelvinsecurity

2 incidentes 0 paises 1 sectores ransomware ES Ultimo: 2026-06-29
Ver en IntelTracker → APTTrail →
KelvinSecurity emerged as a financially motivated cybercrime group around 2013, primarily focusing on data theft and extortion, though they have been associated with ransomware activities. The group is largely composed of individuals of South American origin, with its alleged leader, a Venezuelan national, having been arrested in Spain in late 2023. While occasionally attempting to position themselves as ethical penetration testing services, KelvinSecurity's operations involve exploiting vulnerabilities to exfiltrate sensitive data, which they then sell on dark web forums or use for extortion, often threatening public leaks if demands are not met. The group operates under several aliases including ATK140, KelvinSec Team, KelvinSecTeamGobVe, and TAG-CR6, and is distinguished by its blend of data exfiltration and extortion tactics that sometimes include ransomware deployment.

Canales, DLS e infraestructura asociada

Clasificacion automatica desde IntelTracker/APTTrail/OSINT. Estado real solo si viene indicado por la fuente.

TipoEstadoHost / enlaceTitle / ultimo titulo
DLS / leak siteupransomware.anggipradana.comRansomware Group: kelvinsecurity
Tecnicas MITRE
T1059.001, T1078, T1087.002, T1486, T1566.001
Victimas
0
TTPs unicas
0
Info robada historica
N/D
Rescates reclamados
N/D
Pagos detectados
N/D

Paises objetivo (SOCRadar)

ArgentinaChileColombiaGermanyDominican RepublicEcuadorSpainUnited KingdomItalyJapan

Sectores atacados

Healthcare (1)

Sectores objetivo (SOCRadar)

Other Information ServicesSoftware PublishersAccommodationAir TransportationManufacturingPublic AdministrationOil & GasEducational ServicesInternet PublishingSpace & Defense

URLs nuevas detectadas en IntelTracker

ransomware.anggipradana.com