OpenClaw Webinar: What security teams need to know about the AI super agent Watch now

Carbon Spider

Discover the adversaries targeting your industry

Back to Adversary Universe
spideralt

CARBON SPIDER is an inactive eCrime adversary that originally targeted the hospitality and retail sectors in pursuit of payment card data, but later shifted to conducting ransomware attacks and becoming a Ransomware-as-a-Service (RaaS) vendor. First emerging in 2013, the group originally targeted Russian financial institutions but expanded their targeting profile in December 2015 to the Middle-Ea...

  • Carbon Spider

  • Russian Federation, Ukraine, Eastern Europe, Europe

Community Identifiers

GOLD WATERFALL, ITG14, Carbanak, ELBRUS, Sangria Tempest, FIN7, GOLD NIAGARA

Objective

Financial Gain

Motivation

Criminal

Contact sales

Thank you for your request!

A member of our team will be in touch shortly

Contact our team about IOCs for this adversary

During a cybersecurity incident, indicators of compromise (IoC) are clues and evidence of a data breach.
Contact us
Adversaries Map

Who's targeting your industry?

Today's adversaries are faster, smarter, and better resourced. Know who they are and how to stop them.

View adversaries
Threat Hunting report spread

CrowdStrike 2025 Threat Hunting Report


Adversaries weaponize and target AI at scale.
Learn more