GodDamn Ransomware — Victims, Campaigns & Activity

Threat entity extracted from intelligence sources

Frequency
6
occurrences
First Seen
July 9, 2026
Last Seen
July 9, 2026

GodDamn is a ransomware_group tracked across 2 threat clusters and 6 intelligence report mentions on ThreatCluster. First observed July 9, 2026; most recent activity July 9, 2026.

Related Threat Clusters

  • GodDamn Ransomware Leverages Microsoft-Signed Driver for Attacks

    The GodDamn ransomware, a rebrand of the Beast and Monster strains, has emerged as a significant threat, primarily targeting American organizations across various sectors. The threat group Hyadina utilized a malicious…

    14 articles · Updated July 9, 2026
  • Foxit Patches 20 Vulnerabilities in PDF Reader and Editor

    On July 8, 2026, Foxit Software released updates for its PDF Reader and Editor to address 20 vulnerabilities, including multiple use-after-free flaws that could lead to remote code execution (RCE). The vulnerabilities,…

    5 articles · Updated July 9, 2026

Recent Intelligence Reports

  • GodDamn Ransomware Rebrands From Beast and Uses PoisonX Driver to Disable Defenses — Cybersecuritynews · July 9, 2026
  • GodDamn Ransomware Uses PoisonX to Blind Security Software — Securityaffairs.Co · July 9, 2026
  • GodDamn ransomware uses Microsoft — Feeds.4Sysops · July 9, 2026
  • GodDamn Ransomware Attack Uses PsExec Lateral Movement and NirSoft Toolkit for Credential Theft — Gbhackers · July 9, 2026
  • Foxit Patches Multiple Use-After — Gbhackers · July 9, 2026
  • 'GodDamn' Ransomware Uses BYOVD to Smite US Companies — Darkreading · July 9, 2026

CVSS v3.1 Breakdown