APT / THREAT GROUP
Lick
1
aliases
Intelligence Profile
Ransomware Variant of Kirk
Threat Analysis
Lick is a known-sophistication threat actor of undetermined national origin, engaged in cyber operations with a primary motivation of unknown activity patterns.
Intelligence Reports Mentioning Lick
Critical Cursor AI Code Editor Flaws Could Lead to OS-Level Remote Code Execution
SecurityWeek· Jul 3, 2026
Fake Google and Cloudflare verification pages spread multiple malware families
Malwarebytes Labs· Jul 2, 2026
ConsentFix and ClickFix: How Microsoft 365 Accounts are Hijacked in 3 Seconds
BleepingComputer· Jul 2, 2026
Opera rolls out Paste Protect feature to fight ClickFix attacks
BleepingComputer· Jul 2, 2026
And the Winner in Dominant Malware Delivery? ClickFix
Dark Reading· Jul 1, 2026
Critical Cursor Flaws Could Let Prompt Injection Escape Sandbox and Run Commands
The Hacker News· Jul 1, 2026
Researcher Analyzes 3,000 Live ClickFix Payloads, Exposing API-Driven Malware Delivery
The Hacker News· Jul 1, 2026
ClickFix Now Cybercriminals' Favorite Malware Delivery Technique
Infosecurity Magazine· Jun 30, 2026
External References
Quick Facts
TypeAPT / Threat Group
Aliases1
Also Known As
Lick
Research Links
Data sourced from Malpedia, Ransomware.live, RansomLook, and CTIWATCH OSINT collection. Actor attribution is based on available intelligence and may be incomplete.