In one long weekend in May 2023, a cybercriminal gang called Clop conducted one of the largest data breaches on record. It exploited a zero-day vulnerability in enterprise managed file transfer software. The supply-chain attack affected thousands of organizations and millions of people. In an effort to extort victims, Clop published terabytes of data, including health care data, highly personal records and corporate data, on the internet. Some victims paid millions of dollars in ransoms to stop the data from being released.
CLOP’s attack epitomizes the challenges faced by nations fighting well-organized, professional cybercriminal gangs generating billions of dollars a year in profit. Cybercrime has become a tax for the price of using IT systems, and it shouldn’t be. It has prompted countries to work closer than ever these days to impact cybercriminal groups. But will Clop, whose members are likely in Russia or Eastern Europe, be held to account?
Participants:
Will Thomas, Cyber Threat Intelligence researcher, Equinix Threat Analysis Centre
Jeremy Kirk, Executive Editor, Cyber Threat Intelligence, Intel 471
European law enforcement officials say a secret U.S. FBI task force called Group 78 used covert tactics to disrupt the Black Basta ransomware group, but it has caused tension. Intel 471 analyzes the delicate dynamics.
Check fraud in the U.S. is booming. Fraudsters steal checks and sell them on underground channels where they are purchased, modified and deposited in hopes of a payment. Here's a briefing on this multi-layered crime.
In August 2025, two anonymous researchers released 9 GB of data from a workstation of a likely advanced persistent threat (APT) group. Here’s an analysis of the data by Intel 471’s Cyber Geopolitical Risk team.
Stay informed with our weekly executive update, sending you the latest news and timely data on the threats, risks, and regulations affecting your organization.