← All Threat Actors
Threat Actor Profile

TridentLocker

No known aliases in database
▲ High Threat
Sedgwick Government Solutions Breach, IQS Cyberattack, GuestTek Hospitality Breach
Origin
Sponsor criminal organization
Motivation financial gain through ransomware and data extortion

Target Sectors

Government Services Telecom Hospitality Professional Services Healthcare Manufacturing Engineering

Known TTPs

Double-extortion
Data exfiltration
Phishing
Exploitation of unpatched software
Stolen credentials
Use of .NET assemblies (e.g., WAVECALL downloader)
Exploitation of CrushFTP
Base64-encoded PowerShell scripts
Rclone
WinRAR

External Resources

CISA Advisories ↗

Related Intelligence

Hacking the mainframe…

LINK COPIED TO CLIPBOARD