UltraRank

Description

(Group-IB) In August 2020, Group-IB published the report ‘UltraRank: the unexpected twist of a JS-sniffer triple threat’. The report described the operations of the cybercriminal group UltraRank, which in five years of activity had successfully attacked 691 eCommerce stores and 13 website service providers.

In November 2020, Group-IB experts discovered a new wave of UltraRank attacks. Even though new attacks were detected at the time, part of the group’s infrastructure remained active and some sites were still infected. The cybercriminals did not use existing domains for new attacks but switched to a new infrastructure to store malicious code and collect intercepted payment data.

Names

Name	Name-Giver
UltraRank	Group-IB

Country

Unknown

Motivation

Financial crime

First Seen

2015

Tools

SnifLite

Operations

2020-11: Group-IB experts discovered a new wave of UltraRank attacks. https://www.group-ib.com/blog/ultrarank

Information

https://www.group-ib.com/blog/ultrarank

Other Information

Uuid

bc7f20e6-c4c5-4112-98f5-a36717a3ebcb

Last Card Change

2021-01-07

Threat Intelligence Garden

Explorer

UltraRank

UltraRank

Description

Names

Country

Motivation

First Seen

Tools

Operations

Information

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks