APT / THREAT GROUP
Tk
1
aliases
Intelligence Profile
ransomware
Threat Analysis
Tk is a known-sophistication threat actor of undetermined national origin, engaged in cyber operations with a primary motivation of unknown activity patterns.
Intelligence Reports Mentioning Tk
OFFIS DCMTK Toolkit
CISA Alerts· Jun 30, 2026
DraftKings hacker 'Snoopy' sentenced to 18 months in prison
BleepingComputer· Jun 24, 2026
Third DraftKings Hacker Sentenced to 18 Months in Prison
SecurityWeek· Jun 24, 2026
Linux Process Name Masquerading, (Wed, Jun 24th)
SANS ISC· Jun 24, 2026
Over 400 Arch Linux AUR Packages Hijacked to Deploy Infostealer and eBPF Rootkit
The Hacker News· Jun 12, 2026
400+ Arch Linux AUR Packages Hijacked to Install Rust Credential Stealer
The Hacker News· Jun 12, 2026
Over 400 Arch Linux packages compromised to push rootkit, infostealer
BleepingComputer· Jun 12, 2026
Iranian Cyber Group Handala Claims Cal Water Hack
SecurityWeek· Jun 12, 2026
Quick Facts
TypeAPT / Threat Group
Aliases1
Also Known As
Tk
Research Links
Data sourced from Malpedia, Ransomware.live, RansomLook, and CTIWATCH OSINT collection. Actor attribution is based on available intelligence and may be incomplete.