ETDA สำนักงานพัฒนาธุรกรรมทางอิเล็กทรอนิกส์
Electronic Transactions Development Agency
Report
Search
Home > List all groups > Desorden

Threat Group Cards: A Threat Actor Encyclopedia

Permanent link Other threat group: Desorden

NamesDesorden (self given)
Country[Unknown]
MotivationFinancial gain
First seen2021
DescriptionNot much is known about this person or group, other than the breach reports.
Seems to be a renamed ALTDOS.
ObservedCountries: India, Indonesia, Malaysia, Taiwan, Thailand, USA.
Tools used
Operations performedSep 2021Desorden Group claims to have stolen 200 GB of data from ABX Express
<https://www.databreaches.net/desorden-group-claims-to-have-stolen-200-gb-of-data-from-abx-express/>
Oct 2021Another Malaysia carrier allegedly hacked and data exfiltrated — Skynet
<https://www.databreaches.net/another-malaysia-carrier-allegedly-hacked-and-data-exfiltrated-skynet/>
Oct 2021Acer confirms second security breach this year
<https://therecord.media/acer-confirms-second-security-breach-this-year/>
Oct 2021Acer under fire: Now hackers claim to have hit Acer Taiwan, too
<https://www.databreaches.net/acer-under-fire-now-hackers-claim-to-have-hit-acer-taiwan-too/>
Oct 2021Central Restaurants Group in Thailand hit by Desorden
<https://www.databreaches.net/central-restaurants-group-in-thailand-hit-by-desorden/>
Oct 2021Desorden Group expands attack on Central Group after deal to pay them allegedly fell through
<https://www.databreaches.net/desorden-group-expands-attack-on-central-group-after-deal-to-pay-them-allegedly-fell-through/>
Jul 2022Desorden is back, declares an attack on MISTINE Better Way Thailand Company
<https://www.databreaches.net/desorden-is-back-declares-an-attack-on-mistine-better-way-thailand-company/>
Jul 2022Thai entities continue to fall prey to cyberattacks and leaks
<https://www.databreaches.net/thai-entities-continue-to-fall-prey-to-cyberattacks-and-leaks/>
Aug 2022Major Indonesia tollroad operator hacked by DESORDEN
<https://www.databreaches.net/major-indonesia-tollroad-operator-hacked-by-desorden/>
Sep 2022TH: Major Cineplex and Major Development PCL hit by DESORDEN
<https://www.databreaches.net/th-major-cineplex-and-major-development-pcl-hit-by-desorden/>
Sep 2022Customer data from hundreds of Indonesian and Malaysian restaurants hacked by DESORDEN
<https://www.databreaches.net/customer-data-from-hundreds-of-indonesian-and-malaysian-restaurants-hacked-by-desorden/>
Sep 2022DESORDEN leaks more data from Indonesia; “Indo data is officially worthless”
<https://www.databreaches.net/desorden-leaks-more-data-from-indonesia-indo-data-is-officially-worthless/>
Sep 2022Malaysian Telecom RedOne hit by DESORDEN
<https://www.databreaches.net/malaysian-telecom-redone-hit-by-desorden/>
Oct 2022Thailand’s THE ICON GROUP hacked by DESORDEN
<https://www.databreaches.net/thailands-the-icon-group-hacked-by-desorden/>
Oct 2022Revenge telecom hacking by DESORDEN Group; third attack threatened
<https://www.databreaches.net/revenge-telecom-hacking-by-desorden-group-third-attack-threatened/>
Oct 2022Johnson Fitness and Wellness hit by DESORDEN Group
<https://www.databreaches.net/johnson-fitness-and-wellness-hit-by-desorden-group/>
Jul 2023Major Malaysian water utilities company hit by hackers; Ranhill offline; hackers claim databases and backups deleted
<https://www.databreaches.net/major-malaysian-water-utilities-company-hit-by-hackers-ranhill-offline-hackers-claim-databases-and-backups-deleted/>
Information<https://cloudsek.com/threatintelligence/threat-group-desorden-actively-targeting-asian-conglomerates/>

Last change to this card: 05 September 2023

Download this actor card in PDF or JSON format

Previous: Dark Basin
Next: Dungeon Spider

Digital Service Security Center
Electronic Transactions Development Agency

Follow us on

Facebook Twitter

Report incidents

Telephone +66 (0)2-123-1227
E-mail [email protected]