Blockade Spider

Details

BLOCKADE SPIDER is a financially motivated and likely opportunistic eCrime adversary that uses EMBARGO ransomware and data theft to monetize their operations. The adversary has been active since at least April 2024, when CrowdStrike Intelligence first observed the adversary use EMBARGO ransomware to encrypt a U.S.-based entity’s data. BLOCKADE SPIDER has a demonstrated interest in and ability to o...

Objective

  • JOsqETBy4Hh89SI

Motivation

  • 3NluTeMY

Contact our team about
IOCs for this adversary

?

During a cybersecurity incident, indicators of compromise (IoC) are clues and evidence of a data breach.

Unlock the adversary universe

Thank you for your request!

A member of our team will be in touch shortly.

CrowdStrike logo