RANSOMWARE OPERATION💰 FINANCIAL
delta
1
aliases
Intelligence Profile
delta — tracked by MISP Galaxy (ransomware).
Threat Analysis
delta is a ransomware operation that deploys encryption-based extortion against organizations globally. This group maintains a data leak site (DLS) to pressure victims into paying ransom demands.
Financially motivated threat actors like delta prioritize monetary gain through methods such as ransomware deployment, banking trojans, cryptocurrency theft, BEC scams, or credential harvesting for resale on underground markets.
Intelligence Reports Mentioning delta
Delta Electronics DVP12SE PLC
CISA Alerts· Jun 30, 2026
Delta Electronics DTM Soft
CISA Alerts· Jun 25, 2026
In Other News: Apple Patches Beats Eavesdropping Flaw, DOT Closes Delta CrowdStrike Probe, AWS Continuum
SecurityWeek· Jun 19, 2026
Delta Electronics ASDA-Soft
CISA Alerts· Apr 16, 2026
China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing
The Hacker News· Apr 3, 2026
APT28 Uses BEARDSHELL and COVENANT Malware to Spy on Ukrainian Military
The Hacker News· Mar 10, 2026
Delta Electronics CNCSoft-G2
CISA Alerts· Mar 5, 2026
Delta Electronics ASDA-Soft
CISA Alerts· Feb 17, 2026
External References
Quick Facts
TypeRansomware Operation
Motivation💰 financial
Aliases1
Also Known As
delta
Research Links
Data sourced from Malpedia, Ransomware.live, RansomLook, and CTIWATCH OSINT collection. Actor attribution is based on available intelligence and may be incomplete.