Cyber Threat Actor: Th3 Ap3x
| Actor Type | Location | Known Incidents |
Activist
|
United Kingdom
|
2 incidents |
|---|
Profile
Th3 Ap3x is a threatactor known by the alias Th3 Ap3x and has been publicly linked to the hacker collective Anonsec. Open‑source reporting indicates that the actor operates from the United Kingdom. The available evidence shows that Th3 Ap3x has focused on the education sector, targeting institutions that store student and staff information. No public sources attribute a state sponsor or criminal consortium to this actor, and the only confirmed affiliation is with Anonsec. The actor’s activities have been limited to data exposure operations, with no disclosed use of specific malware families, initial access vectors, or tooling techniques in the reported incidents.
In January 2015 Th3 Ap3x compromised the Higher Education Commission of Pakistan’s website (hec.gov.pk) and released a dump containing nearly ten thousand usernames paired with clear‑text passwords. In October 2015 the same actor breached windsormed.org, extracting and publishing over six thousand records that included personal student information. Both operations resulted in the public disclosure of sensitive data without any indication of financial gain, espionage motives, or disruptive intent beyond the data leaks themselves. These two incidents represent the entirety of the publicly documented campaigns attributed to Th3 Ap3x. No further details about their methods, tools, or broader operational patterns are available in the source material.
