TAG-124’s Multi-Layered TDS Infrastructure and Extensive User Base

SUMMARY :

Insikt Group has identified a complex infrastructure linked to the traffic distribution system TAG-124, which overlaps with several threat activity clusters and includes compromised WordPress sites and various servers. Multiple threat actors, including operators of Rhysida and Interlock ransomware, use TAG-124, reinforcing their connection through shared tactics and tools. Insikt Group anticipates that TAG-124 will continue to evolve and attract more users within the cybercriminal ecosystem.

OPENCTI LABELS :

remcos,cleanuploader,mintsloader,tag-124,ta582


Open in NetmanageIT OpenCTI Public Instance with below link!


Use public read only username and password on login page.

NOTE : Use Public READ only user credentials on login page banner.


TAG-124’s Multi-Layered TDS Infrastructure and Extensive User Base