APT / THREAT GROUP
Frog
1
aliases
Intelligence Profile
ransomware
Threat Analysis
Frog is a known-sophistication threat actor of undetermined national origin, engaged in cyber operations with a primary motivation of unknown activity patterns.
Intelligence Reports Mentioning Frog
North Korea-Linked npm Packages Mimic Rollup Polyfills to Steal Developer Secrets
The Hacker News· Jul 3, 2026
Hijacked npm and Go Packages Use VS Code Tasks to Deploy Python Infostealer
The Hacker News· Jun 29, 2026
New DirtyClone Linux Kernel Flaw Lets Local Users Gain Root via Cloned Packets
The Hacker News· Jun 26, 2026
Lookalike npm Package Hides a Multi-Stage Windows RAT
Infosecurity Magazine· Jun 23, 2026
CISO Conversations: Carl Froggett – Combining CISO and CIO at Deep Instinct
SecurityWeek· Jun 23, 2026
145 Mastra npm Packages Compromised via Hijacked Contributor Account
The Hacker News· Jun 17, 2026
IronWorm and New Miasma Worm Variant Hit npm in Supply Chain Attacks
The Hacker News· Jun 5, 2026
Bitwarden CLI Compromised in Ongoing Checkmarx Supply Chain Campaign
The Hacker News· Apr 23, 2026
Quick Facts
TypeAPT / Threat Group
Aliases1
Also Known As
Frog
Research Links
Data sourced from Malpedia, Ransomware.live, RansomLook, and CTIWATCH OSINT collection. Actor attribution is based on available intelligence and may be incomplete.