Cyber Resilience

Threat actor · all actors

INC RansomG1032 unknown

aka INC Ransom, GOLD IONIC

Last updated: 2026-07-03

0attributed CVEs
34ATT&CK techniques
0.0IDF score (tooling uniqueness)
0exclusive CVEs
years active

About this actor

[INC Ransom](https://attack.mitre.org/groups/G1032) is a ransomware and data extortion threat group associated with the deployment of [INC Ransomware](https://attack.mitre.org/software/S1139) that has been active since at least July 2023. [INC Ransom](https://attack.mitre.org/groups/G1032) has targeted organizations worldwide most commonly in the industrial, healthcare, and education sectors in the US and Europe.(Citation: Bleeping Computer INC Ransomware March 2024)(Citation: Cybereason INC Ransomware November 2023)(Citation: Secureworks GOLD IONIC April 2024)(Citation: SentinelOne INC Ransomware)

Source: MITRE ATT&CK

Activity timeline

No activity events recorded.

Profile

CVERiskCVSSEPSSPublishedProducts
No attributed CVEs.

Mitigating controls (NIST 800-53)

ControlTechniques coveredCoverage
SI-426 / 3476%
CM-623 / 3468%
CM-220 / 3459%
CM-720 / 3459%
SI-319 / 3456%
AC-317 / 3450%
AC-616 / 3447%
CA-716 / 3447%
AC-215 / 3444%
AC-512 / 3435%
SC-712 / 3435%
SI-712 / 3435%
CM-510 / 3429%
IA-210 / 3429%
RA-510 / 3429%

Co-occurring actors

None.

Similar actors

Similar TTPs