216.73.217.22

Threat landscape — insurance

· Published 27/05/2026 15:46

Export JSON

Essential information

Published
27/05/2026 15:46
Modified
Confidence
100/100
Report type(s)
threat-report
Related entities
11 intrusion sets (apt), 199 techniques (mitre)

Description

Landscape de menace exporté depuis opencti-cli pour le secteur « insurance ». Importer via Data → Import / Import from STIX, ou rattacher à un rapport existant.

Related entities

Vulnerabilities, IOCs, intrusion sets, MITRE techniques and other entities referenced in this report.

Intrusion sets (APT) (11)

  • Scattered Spider Roasted 0ktapusOcto Tempest
    The MITRE Corporation Confidence 100

    [Scattered Spider](https://attack.mitre.org/groups/G1015) is a native English-speaking cybercriminal group active since at least 2022. (Citation: CrowdStrike Scattered Spider Profile) (Citation: MSTIC Octo Tempest Operations October 2023) The group initially …

    First seen 01/01/1970 · Last seen 16/11/5138 Published 16/12/2025 19:39 · Modified 27/03/2026 01:14
  • FIN8 Syssphinx
    The MITRE Corporation Confidence 100

    [FIN8](https://attack.mitre.org/groups/G0061) is a financially motivated threat group that has been active since at least January 2016, and known for targeting organizations in the hospitality, retail, entertainment, insurance, technology, …

    First seen 01/01/1970 · Last seen 16/11/5138 Published 16/12/2025 19:39 · Modified 27/03/2026 01:14
  • RA
    AlienVault Confidence 100
    First seen 01/01/1970 · Last seen 16/11/5138 Published 21/12/2025 00:33 · Modified 27/05/2026 15:52
  • DragonForce
    Ransomware.Live Confidence 100

    No description available

    First seen 01/01/1970 · Last seen 16/11/5138 Published 20/12/2025 08:53 · Modified 16/06/2026 19:48
  • The Gentlemen
    AlienVault Confidence 100
    First seen 01/01/1970 · Last seen 16/11/5138 Published 21/12/2025 16:02 · Modified 27/05/2026 15:52
  • POLONIUM Plaid Rain
    The MITRE Corporation Confidence 100

    [POLONIUM](https://attack.mitre.org/groups/G1005) is a Lebanon-based group that has primarily targeted Israeli organizations, including critical manufacturing, information technology, and defense industry companies, since at least February 2022. Security researchers assess …

    First seen 01/01/1970 · Last seen 16/11/5138 Published 16/12/2025 19:39 · Modified 27/03/2026 01:13
  • RomCom
    AlienVault Confidence 100
    First seen 01/01/1970 · Last seen 16/11/5138 Published 20/12/2025 23:51 · Modified 27/05/2026 15:52
  • APT-C-36 (Blind Eagle)
    AlienVault Confidence 100
    First seen 01/01/1970 · Last seen 16/11/5138 Published 21/12/2025 08:28 · Modified 27/05/2026 15:52
  • BlindEagle
    AlienVault Confidence 100
    First seen 01/01/1970 · Last seen 16/11/5138 Published 21/12/2025 06:53 · Modified 27/05/2026 15:52
  • GhostRedirector
    AlienVault Confidence 100
    First seen 01/01/1970 · Last seen 16/11/5138 Published 21/12/2025 17:20 · Modified 27/05/2026 15:52
  • RedCurl
    The MITRE Corporation Confidence 100

    [RedCurl](https://attack.mitre.org/groups/G1039) is a threat actor active since 2018 notable for corporate espionage targeting a variety of locations, including Ukraine, Canada and the United Kingdom, and a variety of …

    First seen 01/01/1970 · Last seen 16/11/5138 Published 16/12/2025 19:39 · Modified 27/03/2026 01:14

Techniques (MITRE) (199)