CrowdStrike 2026 Global Threat Report: The definitive threat intelligence report for the AI era Download report

Shining Spider

Discover the adversaries targeting your industry

Back to Adversary Universe
spideralt

SHINING SPIDER is an eCrime adversary who has conducted ransomware operations since at least December 2020, relying on encryption and data exfiltration to extort payment from victims. The group is likely a previous affiliate of CIRCUS SPIDER’s Netwalker Ransomware-as-a-Service (RaaS) scheme, and has used ThunderCrypt ransomware as well as the legitimate Microsoft security tool BitLocker to encrypt...

  • Shining Spider

  • eCrime

Community Identifiers

Lorenz

Objective

Financial Gain

Motivation

Criminal

Contact sales

Thank you for your request!

A member of our team will be in touch shortly

Contact our team about IOCs for this adversary

During a cybersecurity incident, indicators of compromise (IoC) are clues and evidence of a data breach.
Contact us
Adversaries Map

Who's targeting your industry?

Today's adversaries are faster, smarter, and better resourced. Know who they are and how to stop them.

View adversaries
Threat Hunting report spread

CrowdStrike 2025 Threat Hunting Report


Adversaries weaponize and target AI at scale.
Learn more