APT / THREAT GROUP
Brick
1
aliases
Intelligence Profile
Ransomware
Threat Analysis
Brick is a known-sophistication threat actor of undetermined national origin, engaged in cyber operations with a primary motivation of unknown activity patterns.
Intelligence Reports Mentioning Brick
Brickcom Cameras
CISA Alerts· Jun 11, 2026
VerdantBamboo Deploys BSD Variant of BRICKSTORM on Linux Appliances
The Hacker News· Jun 8, 2026
Chinese APT deploys new malware to keep access to hacked networks
BleepingComputer· Jun 5, 2026
Cybersecurity M&A Roundup: 38 Deals Announced in March 2026
SecurityWeek· Apr 2, 2026
vSphere and BRICKSTORM Malware: A Defender's Guide
Mandiant Blog· Apr 2, 2026
TeamPCP Supply Chain Campaign: Update 005 - First Confirmed Victim Disclosure, Post-Compromise Cloud Enumeration Documented, and Axios Attribution Narrows, (Wed, Apr 1st)
SANS ISC· Apr 1, 2026
TeamPCP Supply Chain Campaign: Update 004 - Databricks Investigating Alleged Compromise, TeamPCP Runs Dual Ransomware Operations, and AstraZeneca Data Released, (Mon, Mar 30th)
SANS ISC· Mar 30, 2026
From BRICKSTORM to GRIMBOLT: UNC6201 Exploiting a Dell RecoverPoint for Virtual Machines Zero-Day
Mandiant Blog· Feb 17, 2026
Quick Facts
TypeAPT / Threat Group
Aliases1
Also Known As
Brick
Research Links
Data sourced from Malpedia, Ransomware.live, RansomLook, and CTIWATCH OSINT collection. Actor attribution is based on available intelligence and may be incomplete.