{
	"id": "8140906e-2bea-4461-ab58-13e28c6ef5e4",
	"created_at": "2026-04-06T02:13:19.895791Z",
	"updated_at": "2026-04-10T13:11:46.234064Z",
	"deleted_at": null,
	"sha1_hash": "95ca43a757e162a8df9ad9b04d00ed4715c932e3",
	"title": "DoppelPaymer FBI PIN on Dec 10, 2020",
	"llm_title": "",
	"authors": "",
	"file_creation_date": "0001-01-01T00:00:00Z",
	"file_modification_date": "0001-01-01T00:00:00Z",
	"file_size": 31533,
	"plain_text": "DoppelPaymer FBI PIN on Dec 10, 2020\r\nArchived: 2026-04-06 02:07:35 UTC\r\nTLP: WHITE\r\n10 December 2020\r\nPIN Number\r\n20201210-001\r\nPlease contact the FBI with\r\nany questions related to this\r\nPrivate Industry Notification.\r\nLocal Field Offices:\r\nwww.fbi.gov/contact-us/field-offices\r\nThe following information is being provided by the FBI, with no\r\nguarantees or warranties, for potential use at the sole discretion of\r\nrecipients to protect against cyber threats. This data is provided to\r\nhelp cyber security professionals and system administrators guard\r\nagainst the persistent malicious actions of cyber actors. This product\r\nwas coordinated with DHS-CISA.\r\nThis PIN has been released TLP: WHITE: Subject to standard copyright\r\nrules, TLP:WHITE information may be distributed without restriction.\r\nDoppelPaymer Ransomware Attacks on\r\nCritical Infrastructure Impact Critical Services\r\nSummary\r\nSince late August 2019, unidentified actors have used DoppelPaymer\r\nransomware to encrypt data from victims within critical industries\r\nworldwide such as healthcare, emergency services, and education,\r\ninterrupting citizens’ access to services. Since its emergence in June\r\n2019, DoppelPaymer ransomware has infected a variety of industries\r\nand targets, with actors routinely demanding six- and seven-figure\r\nransoms in Bitcoin (BTC). Prior to infecting systems with ransomware,\r\nthe actors’ exfiltrate data to use in extortion schemes and have made\r\nfollow-on telephone calls to victims to further pressure them to make\r\nransom payments.\r\nThreat Details\r\nDoppelPaymer ransomware attacks since June 2019 have negatively\r\nimpacted the provision of healthcare, emergency, and education\r\nservices to citizens worldwide.\r\nhttps://beta.documentcloud.org/documents/20428892-doppelpaymer-fbi-pin-on-dec-10-2020\r\nPage 1 of 2\n\nSource: https://beta.documentcloud.org/documents/20428892-doppelpaymer-fbi-pin-on-dec-10-2020\r\nhttps://beta.documentcloud.org/documents/20428892-doppelpaymer-fbi-pin-on-dec-10-2020\r\nPage 2 of 2",
	"extraction_quality": 1,
	"language": "EN",
	"sources": [
		"ETDA"
	],
	"origins": [
		"web"
	],
	"references": [
		"https://beta.documentcloud.org/documents/20428892-doppelpaymer-fbi-pin-on-dec-10-2020"
	],
	"report_names": [
		"20428892-doppelpaymer-fbi-pin-on-dec-10-2020"
	],
	"threat_actors": [],
	"ts_created_at": 1775441599,
	"ts_updated_at": 1775826706,
	"ts_creation_date": 0,
	"ts_modification_date": 0,
	"files": {
		"pdf": "https://archive.orkl.eu/95ca43a757e162a8df9ad9b04d00ed4715c932e3.pdf",
		"text": "https://archive.orkl.eu/95ca43a757e162a8df9ad9b04d00ed4715c932e3.txt",
		"img": "https://archive.orkl.eu/95ca43a757e162a8df9ad9b04d00ed4715c932e3.jpg"
	}
}