Ransomware Group
DoppelPaymer
Also known as: Grief, PayOrGrief
Status: inactive • First seen 2019-04 • 150+ known victims
DoppelPaymer attacked many hospitals and government agencies before rebranding and fading away.
Overview
DoppelPaymer rebranded to Grief but eventually went quiet after major attacks.
Target Industries
Healthcare, Government, Education
How They Attack
- • Dridex malware
- • Phishing
- • RDP exploitation
Notable Victims
Kia Motors (2021), Newcastle University (2020)
Is your business exposed?
How to Protect Against DoppelPaymer
- 1.
Block Dridex IOCs
MITRE ATT&CK Techniques
Is your business exposed?
Check if your company data is circulating on the dark web
Free scan • No credit card required