APT / THREAT GROUP
Magic
1
aliases
Intelligence Profile
Ransomware Based on EDA2
Threat Analysis
Magic is a known-sophistication threat actor of undetermined national origin, engaged in cyber operations with a primary motivation of unknown activity patterns.
Intelligence Reports Mentioning Magic
Microsoft is named a Leader in the 2026 Gartner® Magic Quadrant™ for Endpoint Protection
Microsoft Security Blog· May 29, 2026
CrowdStrike Named a Leader in 2026 Gartner® Magic Quadrant™ for Endpoint Protection for Seventh Consecutive Time
CrowdStrike Blog· May 29, 2026
New Linux PamDOORa Backdoor Uses PAM Modules to Steal SSH Credentials
The Hacker News· May 8, 2026
CrowdStrike Named a Leader in the First-Ever Gartner® Magic Quadrant™ for Cyberthreat Intelligence Technologies
CrowdStrike Blog· May 6, 2026
Recorded Future Named a Leader in the 2026 Gartner® Magic Quadrant™ for Cyberthreat Intelligence Technologies. And there’s more.
Recorded Future Blog· May 5, 2026
CISA Adds 4 Exploited Flaws to KEV, Sets May 2026 Federal Deadline
The Hacker News· Apr 25, 2026
CISA Adds Four Known Exploited Vulnerabilities to Catalog
CISA Alerts· Apr 24, 2026
Interesting Message Stored in Cowrie Logs, (Wed, Mar 18th)
SANS ISC· Mar 18, 2026
External References
Quick Facts
TypeAPT / Threat Group
Aliases1
Also Known As
Magic
Research Links
Data sourced from Malpedia, Ransomware.live, RansomLook, and CTIWATCH OSINT collection. Actor attribution is based on available intelligence and may be incomplete.