Menu
Browse

Cyber Threat Actor: MASTER

Actor Type Location Known Incidents
 Icon
Criminal
1 incident
Profile

MASTER is a threat actor linked to disruptive cyber operations against commercial entities, with publicly documented activity centered on the Angling Direct breach of November 2021. This incident demonstrates a focus on retail sector targets, specifically online retailers dependent on web presence and customer trust. The actor’s objectives combined immediate operational disruption with attempts at financial gain through fraudulent schemes, alongside threats designed to coerce victim interaction. MASTER compromised the retailer’s network infrastructure, forcing website shutdowns and hijacking social media accounts to amplify malicious messaging. Attackers redirected legitimate web traffic to pornographic content while falsely announcing a transfer of business ownership, leveraging this deception to solicit paid subscriptions under fraudulent pretenses. Concurrent threats to delete company data unless contacted introduced an additional layer of extortion, though no explicit ransom demands or data destruction were confirmed in public reporting.

The operation exhibited consistent tactics in manipulating digital assets to inflict reputational and operational harm. Initial unauthorized network access enabled MASTER to seize control of critical online platforms, suggesting exploitation of perimeter defenses or credential compromise, though specific initial access vectors remain undisclosed. Social media account takeovers facilitated the dissemination of false narratives to customers, while domain redirection attacks maximized visibility of disruptive content. The actor’s tooling emphasized overt platform manipulation over stealth, prioritizing immediate disruption through website defacements, traffic hijacking, and public intimidation rather than covert data exfiltration. While Angling Direct confirmed customer payment data remained secure via third-party processors, the breach triggered investigations into potential exposure of non-financial personal information. The incident caused measurable harm through prolonged service outages, search engine visibility concerns, and stock performance anxieties, underscoring MASTER’s capacity to target business-critical systems for combined disruptive and financially motivated outcomes.

Incidents
Attributed incidents available to members
1 incident
Sources
Sources available to members
0 sources