big_game_hunting_(bgh)_ecrime_groups
Big Game Hunting (BGH) eCrime Groups refers to financially motivated eCrime actors conducting ransomware and data extortion operations at scale. According to the provided content, Europe is the second most-targeted region after North America, and since January 1, 2024, these actors have named approximately 2,100 Europe-based victims on more than 100 dedicated leak sites (DLSs). The most targeted European countries are the United Kingdom, Germany, Italy, France, and Spain, and the most targeted sectors are manufacturing, professional services, technology, industrials and engineering, and retail. The content states that BGH actors use ransomware and data extortion, operate via DLSs, and in some cases use GDPR data breach penalties to pressure victims into paying ransoms. The broader European cybercrime ecosystem supporting these operations includes initial access brokers, malware developers, and ransomware affiliates. No specific sub-groups are identified in the provided content. Known alias in the content: big_game_hunting_(bgh)_ecrime_groups.
Know when an actor pivots toward your sector
Mallory correlates actor tradecraft and target patterns against your stack, your sector, and your geography. See overlap before they land.
Recent activity
1 sources tracked across advisories and community write-ups. News coverage will land here when it surfaces.
No news coverage yet. Advisories and community discussion only.
The version that knows your environment.
Match sector + geo + tech-stack targeting against your real footprint.
Every observed MITRE ATT&CK technique, grouped by tactic.
Families this actor is known to deploy, with IOCs and behavior.
CVEs this actor has used in known campaigns.
YARA, Sigma, Snort, and vendor rules, auto-deployed to your SIEM.
Domains, IPs, and hashes tied to this actor, refreshed continuously.