RANSOMWARE OPERATION💰 FINANCIAL
fusion
1
aliases
Intelligence Profile
fusion — tracked by MISP Galaxy (ransomware).
Threat Analysis
fusion is a ransomware operation that deploys encryption-based extortion against organizations globally. This group maintains a data leak site (DLS) to pressure victims into paying ransom demands.
Financially motivated threat actors like fusion prioritize monetary gain through methods such as ransomware deployment, banking trojans, cryptocurrency theft, BEC scams, or credential harvesting for resale on underground markets.
Intelligence Reports Mentioning fusion
Adobe Patches 7 CVSS 10.0 Flaws in ColdFusion and Campaign Classic
The Hacker News· Jul 1, 2026
Adobe Patches Critical ColdFusion, Campaign Classic Vulnerabilities
SecurityWeek· Jul 1, 2026
Adobe patches seven max severity ColdFusion, Campaign flaws
BleepingComputer· Jul 1, 2026
OFFIS DCMTK Toolkit
CISA Alerts· Jun 30, 2026
AzeoTech DAQFactory (Update A)
CISA Alerts· Jun 18, 2026
Malicious npm packages abuse dependency confusion to profile developer environments
Microsoft Security Blog· May 29, 2026
High-Severity Vulnerability Patched in VMware Fusion
SecurityWeek· May 14, 2026
Adobe Patches 55 Vulnerabilities Across 11 Products
SecurityWeek· Apr 14, 2026
External References
Quick Facts
TypeRansomware Operation
Motivation💰 financial
Aliases1
Also Known As
fusion
Research Links
Data sourced from Malpedia, Ransomware.live, RansomLook, and CTIWATCH OSINT collection. Actor attribution is based on available intelligence and may be incomplete.