Kazu
MISP
Type:
Unknown
Unknown
Country:
Unknown
Unknown
First seen:
Unknown
Unknown
Details:
Kazu is a financially motivated ransomware group known for employing a double extortion model, targeting sectors such as healthcare and government. The group has claimed responsibility for multiple high-profile breaches, including those of Manage My Health and the DefensorÃa del Pueblo de Colombia, exfiltrating sensitive data through techniques like exploiting unpatched vulnerabilities and credential reuse. Kazu has demanded ransoms ranging from $60,000 to $500,000, threatening public disclosure of stolen data if payments are not made. Their operations have primarily focused on entities in Latin America, Asia, and the Middle East, with a notable presence on dark web leak sites.
References (5)
- cyfirma.com - Cyber Threat Landscape Report United Arab Emirates Uae
- botcrawl.com - National Civil Service Commission Of Colombia Data Breach
- hipaajournal.com - Doctor Alliance Data Breach Claim
- databreaches.net - From Bad To Worse Doctor Alliance Hacked Again By Same Threat Actor
- botcrawl.com - Saudi Icon Data Breach
Metadata
| ID: | 972 |
| Created: | 23/01/2026 04:00 |
| Updated: | 07/03/2026 16:00 |