APT / THREAT GROUP
Ra
1
aliases
Intelligence Profile
ransomware
Threat Analysis
Ra is a known-sophistication threat actor of undetermined national origin, engaged in cyber operations with a primary motivation of unknown activity patterns.
Intelligence Reports Mentioning Ra
JadePuffer ransomware used AI agent to automate entire attack
BleepingComputer· Jul 4, 2026
U.S. Government Entity Paid Kairos $1 Million in Data-Theft Extortion Case
The Hacker News· Jul 4, 2026
Security Roundup: Apple’s Hide My Email Service Fails to Hide Your Email
Wired Security· Jul 4, 2026
Unpatched Flaws Disclosed in Filesystem Bundled Into Millions of Embedded Devices
The Hacker News· Jul 3, 2026
New Avalon Malware Framework Packs CrownX Ransomware Capabilities
The Hacker News· Jul 3, 2026
NetNut proxy network disrupted, 2 million infected devices cut off
BleepingComputer· Jul 3, 2026
North Korea-Linked npm Packages Mimic Rollup Polyfills to Steal Developer Secrets
The Hacker News· Jul 3, 2026
In Other News: Canadian Hacker Jailed, Open Source Zero-Days, Two Sentenced for ATM Jackpotting
SecurityWeek· Jul 3, 2026
Quick Facts
TypeAPT / Threat Group
Aliases1
Also Known As
Ra
Research Links
Data sourced from Malpedia, Ransomware.live, RansomLook, and CTIWATCH OSINT collection. Actor attribution is based on available intelligence and may be incomplete.