RU

Infrastructure Destruction SquadInfrastructure Destruction Squad

Also known as: Dark Engine · Infrastructure Destruction Squad

Origin
RU
Known aliases
2

Profile

Dark Engine has emerged as a significant threat actor targeting industrial control systems and SCADA systems in sectors such as metallurgy and food processing. The group has conducted multiple ICS-targeted incidents, with a pronounced operational surge in June 2025. Additionally, Dark Engine is involved in a campaign that embeds fraudulent CAPTCHA prompts into legitimate WordPress sites, utilizing SEO poisoning to harvest login credentials. Reports also indicate a data leak from Dark Engine that exposed sensitive phone data in the U.S.

Aliases· 2

Dark EngineInfrastructure Destruction Squad

References

  1. https://cloud.google.com/blog/topics/threat-intelligence/threats-to-defense-industrial-base
  2. https://securitybrief.com.au/story/fake-captcha-scam-targets-2-353-wordpress-sites-warns-cybercx

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Actor
Chernovite
Actor
Daixin Team
Actor
DarkCasino
Actor
Inception Framework
Software
Darkangel
Actor
DarkPink
Sourced from MISP-Galaxy Threat Actor cluster. Curated by Adam Lundqvist, Founder at SQUR.