DETECTO/ThreatDossier
DashboardPricingThreatsRun Free ScanSign In
DETECTO/ThreatDossier

Security intelligence for MSPs, consultants, and businesses. Find breached credentials, compliance gaps, and exposed infrastructure before attackers do.

Product

  • Scan a Domain
  • Pricing
  • Dashboard
  • Sign In

Resources

  • Threat Intelligence
  • Ransomware Groups

Legal

  • Privacy Policy
  • Terms of Service

© 2026 DETECTO. All rights reserved.

Threats/Groups/Icefire

Icefire

Inactive

icefire

First seen: 2022-08-20T09:49:42.447167+00:00Total victims: 11

IceFire is a ransomware group first observed in 2022 that expanded to Linux in early 2023 by exploiting a vulnerability in IBM Aspera Faspex (CVE-2022-47986), targeting media and entertainment organizations in Turkey, Iran, Pakistan, and the UAE using double-extortion tactics.

0Total Victims
0Countries Targeted
0Sectors Targeted
0Avg Attacks/Month

Activity Timelinelast 24 months

Top Targeted Sectors

Top Targeted Countries

No country data available

Recent Victimsshowing 11 of 11

NameCountrySectorDate
*.algotrader.com—Technology2022-08-20T09:50:02.102837+00:00
*.bestservers.pro—Technology2022-08-20T09:50:00.658148+00:00
*.iperactive.com.ar—Technology2022-08-20T09:49:59.138587+00:00
*.cco1.com—Technology2022-08-20T09:49:57.523236+00:00
*.vps-vds.com—Technology2022-08-20T09:49:55.763440+00:00
*.guneshosting.com—Technology2022-08-20T09:49:54.156360+00:00
*.kodhosting.com—Technology2022-08-20T09:49:52.642529+00:00
*.kru.ac.th—Education2022-08-20T09:49:50.882177+00:00
*.directfn.net—Financial Services2022-08-20T09:49:46.719633+00:00
*.feesh.ch—Consumer Services2022-08-20T09:49:45.061614+00:00
*.skifgroup.com—Manufacturing2022-08-20T09:49:42.447167+00:00

Data from ransomware.live