Who is OVERLORD SPIDER?

OVERLORD SPIDER is a threat actor. This group is tracked in the Strobes VI threat intelligence database.

What vulnerabilities does OVERLORD SPIDER exploit?

Specific CVE exploitation data for OVERLORD SPIDER is being tracked. Check the Strobes VI threat actor profile for updates.

OVERLORD SPIDER

Exploited CVEs

Overview

OVERLORD SPIDER, aka The Dark Overlord. Similar to ransomware operators today, OVERLORD SPIDER likely purchased RDP access to compromised servers on underground forums in order to exfiltrate data from corporate networks. The actor was known to attempt to “sell back” the data to the respective victims, threatening to sell the data to interested parties should the victim refuse to pay. There was at least one identified instance of OVERLORD SPIDER successfully selling victim data on an underground market.

Exploited Vulnerabilities

No exploited CVEs have been attributed to this threat actor yet.

Browse CVE Database