Group-IB

Masked Actors

True crime meets cybercrime. Discover the people behind the keyboard. From Ransomware-as-a-Service (RaaS) gangs to global financial crime syndicates, the rise of sophisticated cyber threats is reshaping the world. These aren’t lone hackers — they’re organized groups running multi-million dollar operations in the shadows. In the Masked Actors podcast, cyber threat expert and former soldier turned hacker Gary Ruddell joins forces with Nick Palmer , a seasoned financial crime fighter, to investigate the top 10 most dangerous cybercriminal groups of 2025 — drawn from Group-IB’s High-Tech Crime Tre...

Author

Group-IB

Category

Technology

Latest episode

Jul 10, 2026

Where to listen?

Podcasts in the app Replaio Radio Coming soon

Podcasts are coming to the app soon. Install now and be the first to see a whole new take on podcasts

Get it on Google Play Install for free Android 5M+ downloads · 4.8 rating iOS soon

Episodes

Defenders: The life of a threat researcher 10.07.2026

Send us Fan Mail Threat researchers work deep in the digital underground, mapping adversaries, exposing tactics, and turning fragments of intelligence into protection that actively stops attacks. Despite the impact of their work, the reality of what they do remains largely hidden from view. In this episode of Masked Actors, Group-IB’s Gary Ruddell is joined by Anastasia Tikhonova, Global Threat Re...

Scattered Spider: Could one phone call bring down your whole organization? 30.06.2026

Send us Fan Mail Can you recognise every employee in your organisation? Most companies cannot — and attackers know it. A routine IT request comes in from a senior leader locked out of their account. Everything checks out, so access is restored. Except it wasn't them. In that moment, you've handed the keys to Scattered Spider — a group that has spent three years proving that human trust i...

Defenders: What does it take to orchestrate international takedowns across borders? 23.06.2026

Send us Fan Mail Cybercrime operates at a scale most people never see. A single incident can cost hundreds of millions of pounds, disrupt businesses overnight, or devastate individuals and families. What often follows is a simple question: how do you stop something that moves this fast, across so many borders? The reality is far from straightforward. Building a case against cybercriminals means tr...

Team TNT: Could you be unknowingly mining for crypto? 30.04.2026

Send us Fan Mail Cryptocurrency promised huge potential for investors. But it’s cybercriminals who are reaping the benefits. From multimillion-dollar ransomware payouts to borderless money laundering, cryptocurrency has quietly become the fuel powering a global cybercrime economy. As regulation evolves across multiple jurisdictions, gaps, inconsistencies, and the borderless nature of crypto contin...

Boolka: The evolution of a cybercriminal enterprise 30.03.2026

Send us Fan Mail If evolution has taught humanity anything, it’s that adaptation is key to survival. As prey develop camouflage techniques, predators get faster, sturdier, and better at detection. Now this game of cat and mouse is taking over the digital world.  All cybergangs are on a cycle of relentless adaptation – but a group that stands out from all the rest is Boolka, innovating near-constan...

Brain Cipher: What happens when national infrastructure comes under strike? 19.12.2025

Send us Fan Mail Indonesia, June 2024 - 210 critical government agencies were crippled in one fell swoop. Immigration services were in disarray; customs officers locked out of critical systems and travellers left stranded in airport and ferry terminals facing delays that would continue for a full week. The culprit? Brain Cipher, a ransomware group barely a week old, which demanded a huge sum of $8...

Ajina: Can you really trust that app?  27.11.2025

Send us Fan Mail Cyber criminals are masters at exploiting human vulnerability and trust. In Uzbek folklore, there's a creature known for causing chaos, preying on humans, lurking in the dark and changing its face to trick its victims before it pounces.   In December 2023, it lent its name to a sophisticated Android malware campaign using the same tactics that emerged in the digital underworl...

MuddyWater & OilRig: The cyber espionage playbook 28.10.2025

Send us Fan Mail As digital infrastructure becomes the backbone of global economies, cyber espionage has quietly evolved into one of the most powerful tools in modern statecraft.  Behind the scenes, nation-backed threat groups like MuddyWater and OilRig operate sophisticated campaigns that blend malware, phishing, and social engineering to infiltrate governments, defence contractors, and critical...

Joystick to Jailbreak: Exploring the Youth Cybercrime Pandemic 23.09.2025

Send us Fan Mail Forget everything you think you know about hackers. Today’s cybercriminals aren’t lurking in shadowy basements - they’re teenagers mastering cheat codes on Roblox, swapping tips on Discord, and using AI to launch attacks from their bedrooms. Join Group-IB’s Gary Ruddell and Nick Palmer as they sit down with Fergus Hay, CEO and co-founder of The Hacking Games, to explore how cyberc...

RansomHub: From RaaS Kingpin to Cartel Mystery 27.08.2025

Send us Fan Mail When RansomHub, one of the most prolific ransomware groups, vanished overnight back in April, it sent shockwaves through the cybercriminal underworld. With over 600 global attacks and millions extorted, their sudden disappearance left affiliates scrambling and researchers asking: what happened? Join Group-IB’s Gary Ruddell and Nick Palmer as they speak with Pietro Albuquerque, a t...

DragonForce: The Cyber Cartel Helping Hackers Hit the High Street 29.07.2025

Send us Fan Mail Empty shelves, lost customers, and hundreds of millions of pounds in lost profit are just some of the outcomes that retailers have faced in the wake of recent ransomware attacks. From the Co-operative to M&S, the recent cyber attacks on UK retail giants have dominated headlines and wreaked havoc that’s been felt by customers, staff, and government officials alike.  The culprit...

Lazarus: Is your best IT worker really a North Korean hacker? 11.06.2025

Send us Fan Mail In December 2014, Sony Pictures announced they were cancelling the release of Seth Rogan’s newest venture The Interview due to a large-scale cyberattack. And in February of this year, global cryptocurrency exchange Bybit suffered a massive attack resulting in the theft of $1.5 billion.  These masked actors are still active. But now, they’ve turned their attention to companies like...

GoldFactory: The cybercriminals who want to steal your face 13.05.2025

Send us Fan Mail If a cybercriminal steals your password, you can change it. But what happens if they steal your face?  Former soldier turned hacker, Gary Ruddell and financial crime veteran, Nick Palmer , explore the actors behind GoldFactory - a cybercriminal group stealing users' facial recognition data to clean out victims bank accounts. Joined by Craig Jones , who spent five years at Int...

Cybercriminals Exposed: Welcome to Masked Actors 09.05.2025

Send us Fan Mail Welcome to Masked Actors — a true crime-inspired podcast from Group-IB that brings you face to face with the people orchestrating some of the most sophisticated cyberattacks on the planet.  Join hosts Gary Ruddell — former soldier turned hacker and cyber threat expert — and Nick Palmer , a financial crime veteran, for the gripping new series which uncovers the tactics, motivations...

Listen to the Masked Actors podcast in Replaio

Radio and podcasts in one app - free, with no sign-up. Install today and do not miss the launch

Get it on Google Play

Replaio is not a podcast publisher; show names, artwork and audio belong to their authors and are distributed through public RSS feeds.