Threat Group Profile
termite
Dormant / historical
Victim claims
7
First seen
Apr 2026
Last activity
08 Jun 2026
Tracked since
β
Group overview
Termite is a ransomware group first identified in late 2024 using a modified version of Babuk ransomware code; its most notable attack was the November 2024 breach of supply-chain software firm Blue Yonder, claiming 680 GB of exfiltrated data and disrupting major customers including Starbucks.
Preferred targets
Manufacturing Β· 3
Agriculture and Food Production Β· 2
Education Β· 1
Healthcare Β· 1
Most targeted countries
US Β· 5
CA Β· 1
AU Β· 1