Yanluowang — Threat Actor Profile, Campaigns & Targets

Threat entity extracted from intelligence sources

Frequency
16
occurrences
First Seen
November 7, 2025
Last Seen
March 25, 2026

Yanluowang is a apt_group tracked across 4 threat clusters and 16 intelligence report mentions on ThreatCluster. First observed November 7, 2025; most recent activity March 25, 2026.

Related Threat Clusters

Recent Intelligence Reports

  • Manager of botnet used in ransomware attacks gets 2 years in prison — Bleepingcomputer · March 25, 2026
  • Head of Russian Cybercrime Group Mario Kart Sentenced for Locking Out Dozens of U.S. Businesses — Thecyberexpress · March 25, 2026
  • Russian access broker sentenced to over 6 years in prison for ransomware schemes — Cyberscoop · March 24, 2026
  • Yanluowang ransomware access broker gets 81 months in prison — Bleepingcomputer · March 24, 2026
  • 81 — Securityaffairs.Co · March 24, 2026
  • Russian Access Broker Gets Nearly 7 Yrs for Enabling Millions in Ransomware Extortion — Thecyberexpress · March 24, 2026
  • Russian Initial Access Broker Handed 81 — Infosecurity-Magazine · March 24, 2026
  • Russian Access Broker Jailed for Facilitating Ransomware Attacks Targeting U.S. Companies — Gbhackers · March 24, 2026

CVSS v3.1 Breakdown