Storm-0829Storm-0829

Also known as: DEV-0829 · Nwgen Team · Storm-0829

Known aliases
3

Profile

Nwgen is a group that focuses on data exfiltration and ransomware activities. They have been found to share techniques with other threat groups such as Karakurt, Lapsus$, and Yanluowang. Nwgen has been observed carrying out attacks and deploying ransomware, encrypting files and demanding a ransom of $150,000 in Monero cryptocurrency for the decryption software.

Aliases· 3

DEV-0829Nwgen TeamStorm-0829

References

  1. https://www.enigmasoftware.com/nwgenransomware-removal/
  2. https://www.databreaches.net/east-tennessee-childrens-hospital-updates-information-on-ransomware-incident/
  3. https://readme.security/cybercrime-is-more-of-a-threat-than-nation-state-hackers-6f6cccf47721
  4. https://twitter.com/cglyer/status/1546297609215696897

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Actor
Storm-0826
Actor
Storm-0530
Actor
Storm-0381
Actor
Storm-0558
Actor
Storm-0324
Actor
Storm-0501
Sourced from MISP-Galaxy Threat Actor cluster. Curated by Adam Lundqvist, Founder at SQUR.