TI Mindmap HUB
Threat Intelligence Report

Helix, a New Name in the Data Extortion Ecosystem?

📅 July 9, 2026 📰 reliaquest.com 🔍 0 CVE(s) referenced

Helix is a newly identified data extortion group leveraging sophisticated identity-based attacks—including vishing, device code phishing, and automated SharePoint exfiltration—built on shared infrastructure and tradecraft from the fragmented BlackFile and ShinyHunters ecosystem, signaling a rapidly evolving threat landscape where disabling device code authentication is critical for defense.

unclassified

Sign in to access the full report including:
detailed analysis, IOCs, MITRE ATT&CK mapping, and STIX bundle.

🔐 Sign In to Read Full Report

You'll need to accept our Terms of Service to access the platform.

📊 Visual Mindmap
🎯 IOC Extraction
⚔️ MITRE ATT&CK TTPs
📦 STIX 2.1 Bundle