APT / THREAT GROUP
Spark
2
aliases
Last seen:Mar 17, 2026
Intelligence Profile
Malware family tracked by Malpedia. ID: win.spark
Threat Analysis
Spark is a known-sophistication threat actor of undetermined national origin, engaged in cyber operations with a primary motivation of unknown activity patterns.
Intelligence Reports Mentioning Spark
Adriatic Port Cyber-Attack by Anubis Sparks Warning Over Maritime Security Risks
Infosecurity Magazine· Jun 15, 2026
Hades PyPI Attack: 19 Packages Poisoned to Auto-Run Bun Credential Stealer
The Hacker News· Jun 9, 2026
IT threat evolution in Q1 2026. Mobile statistics
Securelist (Kaspersky)· May 18, 2026
How to Disable Google's Gemini in Chrome
Wired Security· May 7, 2026
UK Commits £90m for Cybersecurity and Pushes for ‘Resilience Pledge’
Infosecurity Magazine· Apr 22, 2026
New SparkCat Variant in iOS, Android Apps Steals Crypto Wallet Recovery Phrase Images
The Hacker News· Apr 3, 2026
Hacktivist campaigns increase as United States, Iran, and Israel conflict intensifies
Sophos X-Ops· Mar 2, 2026
The OpenClaw Hype: Analysis of Chatter from Open-Source Deep and Dark Web
BleepingComputer· Feb 25, 2026
External References
Quick Facts
TypeAPT / Threat Group
Aliases2
Also Known As
win.sparkSpark
External Intelligence
Malpedia: win.sparkResearch Links
Data sourced from Malpedia, Ransomware.live, RansomLook, and CTIWATCH OSINT collection. Actor attribution is based on available intelligence and may be incomplete.