Water BakunawaWater Bakunawa

Also known as: Water Bakunawa

Known aliases
1

Profile

Water Bakunawa is a cybercriminal group identified by Trend Micro, responsible for the RansomHub ransomware, which exploits the Zerologon vulnerability to gain unauthorized network access. The group employs EDRKillShifter to evade detection and disrupt security monitoring processes, utilizing advanced anti-EDR techniques. Their targets include sectors such as water and wastewater, IT, healthcare, and financial services. Members of the group and related affiliates have linked by association with other high-profile RaaS groups like Scattered Spider and ALPHV.

Aliases· 1

Water Bakunawa

References

  1. https://www.trendmicro.com/en_us/research/24/i/how-ransomhub-ransomware-uses-edrkillshifter-to-disable-edr-and-.html

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Actor
RansomHub
Actor
Water Kurita
Actor
Water Gamayun
Actor
Water Curupira
Actor
Sinobi
Actor
Water Makara
Sourced from MISP-Galaxy Threat Actor cluster. Curated by Adam Lundqvist, Founder at SQUR.