APT / THREAT GROUP💰 FINANCIAL
frag
1
aliases
Intelligence Profile
Frag is a ransomware group that emerged in late 2024, exploiting a critical Veeam Backup & Replication vulnerability (CVE-2024-40711) to compromise targets in industrial sectors, with blockchain analysis linking it to a shared wallet cluster with the Akira group.
Threat Analysis
frag is a known-sophistication threat actor of undetermined national origin, engaged in cyber operations with a primary motivation of financial.
Financially motivated threat actors like frag prioritize monetary gain through methods such as ransomware deployment, banking trojans, cryptocurrency theft, BEC scams, or credential harvesting for resale on underground markets.
Intelligence Reports Mentioning frag
‘DirtyClone’ Linux Kernel Vulnerability Leads to Root Access
SecurityWeek· Jun 29, 2026
New DirtyClone Linux Kernel Flaw Lets Local Users Gain Root via Cloned Packets
The Hacker News· Jun 26, 2026
Why AI-driven threats are exposing the limits of MSP security stacks
BleepingComputer· Jun 11, 2026
GenAI Is Both Hunter and Hunted at Pwn2Own Berlin 2026
Trend Micro Research· Jun 9, 2026
Shrinking the IAM Attack Surface through Identity Visibility and Intelligence Platforms (IVIP)
The Hacker News· Jun 3, 2026
ABB AC500 V2
CISA Alerts· May 26, 2026
New Linux Kernel Vulnerability Fragnesia Allows Root Privilege Escalation
SecurityWeek· May 14, 2026
New Fragnesia Flaw Hands Linux Local Users Root Access
Infosecurity Magazine· May 14, 2026
External References
Quick Facts
TypeAPT / Threat Group
Motivation💰 financial
Aliases1
Also Known As
frag
DLS Infrastructure
○ OFFLINExhvzsaxl3vbio6dg547envq5xgap3pwobtursdvwatdoxextv43kb7id.onion
○ OFFLINE34o4m3f26ucyeddzpf53bksy76wd737nf2fytslovwd3viac3by5chad.onion
○ OFFLINE34o4m3f26ucyeddzpf53bksy76wd737nf2fytslovwd3viac3by5chad.onion
○ OFFLINE34o4m3f26ucyeddzpf53bksy76wd737nf2fytslovwd3viac3by5chad.onion
Research Links
Data sourced from Malpedia, Ransomware.live, RansomLook, and CTIWATCH OSINT collection. Actor attribution is based on available intelligence and may be incomplete.