Prophet Spider

Details

PROPHET SPIDER is an eCrime actor that has conducted low-volume, opportunistic web server compromises since at least May 2017. PROPHET SPIDER primarily gains access to victims by compromising vulnerable web servers, leveraging a range of vulnerabilities for this purpose. The adversary’s target scope appears to be opportunistic and not focused on any one sector.  PROPHET SPIDER uses a variety of lo...

Community Identifiers

01SoAjHEtG8Qq64

Objective

  • VP5jfdBOru4HXkT

Motivation

  • wpKLOrqB

Contact our team about
IOCs for this adversary

?

During a cybersecurity incident, indicators of compromise (IoC) are clues and evidence of a data breach.

Resources

2023 Global Threat Report

PROPHET SPIDER Exploits Oracle WebLogic to Facilitate Ransomware Activity

PROPHET SPIDER Exploits Citrix ShareFile Remote Code Execution Vulnerability CVE-2021-22941 to Deliver Webshell

Unlock the adversary universe