3C-INT logo [Cyber]Crime Characterization for Intelligence FREE PREVIEW
You are exploring the Free preview. To unlock full read-only access to all public profiles and in-app notifications, create a free research account. For analyst / premium plans capabilities (editing, advanced tabs, exports), please contact us

Threat Actor Characterization

Back
You’re viewing the read-only version. Sign in for analyst tools (editors, promote draft, file/relations management, etc.)
Kitty Search

Kitty Search

ID: c29af20bdf51d2126b7a52f93beb1d8636172
Cybercrime Hacktivist
Threat types: Hacktivism, Data Leak
Russia CAN, FRA, MEX, ROU, UKR, USA
Updated: 2026-03-30
Created: 2026-03-21
Progress: 84% Completeness: 81% Freshness: 90%
Operation zone: Canada, France, Mexico, Romania, Ukraine, United States
Aliases Limited alias preview
Kitty Cloud KittySearch
Actor Network Graph
Open Network Graph
Read-only preview for anonymous visitors. Sign in with a free Research account for full workspace.
MITRE ATT&CK®
confidence: unknown
Actor Techniques page ATT&CK® Diagram

No techniques mapped yet.
Strategic Intelligence
Limited preview
Last updated: 2026-03-22T03:54:31+00:00

Kitty Search — Telegram-based cyber-enablement and leak-search service node

Classification: TLP:WHITE — Open Source Intelligence (OSINT)

Category: Cyber / Supporting Platform / Access-brokering-adjacent service node

Origin: Assessed Russia (Russian-language ecosystem, Russia-tagged Telegram analytics, pro-Russia ecosystem overlap)

Author: iQBlack CTI Team


Executive Summary

Kitty Search is best assessed not as a fully distinct intrusion set, but as a Telegram-based cyber-enablement project operating as a hybrid of leak-search utility, data-access storefront, and publicity channel inside a wider pro-Russia hacktivist and cybercriminal-adjacent ecosystem. Publicly visible channel descriptions present it as a “universal cybersecurity tool” for searching leaked data, analyzing logs, and checking domains and servers through a Telegram bot. The same ecosystem also advertises support contacts, bot subscriptions, and periodic feature updates.


Publicly accessible Telegram analytics pages and archived channel excerpts show Kitty Search linked to the bot identifier @KittySearchV3bot, support contact @krigs_workV2, and the news channel @kittysearchnews. The observable content goes beyond benign OSINT framing: the channel has advertised “admin panel” sales, posted alleged database dumps, discussed document leaks, and cross-promoted with actors and brands such as Morningstar, PalachPro, AvangardSec, and Keymous Plus.

Full strategic intelligence is available in Analyst and Premium plans.
Executive Analyst Brief for CISO
Saved Limited preview

Executive Analyst Brief for CISO — Kitty Search


Upgrade to access the full executive brief.
Tip: Hover the section title to learn what’s included in Analyst / Premium plans.
Executive brief now
Saved successfully.
Hunting Playbook
Saved Limited preview

Hunting Playbook — Kitty Search


Upgrade to access the full hunting playbook.
Tip: Hover the section title to learn what’s included in Analyst / Premium plans.
Hunting Playbook now
Saved successfully.
IOC Appendix
Saved Limited preview
Last updated: 2026-03-22T03:58:49+00:00

IOC Appendix — Kitty Search


More IOC context for Research. Full appendix for Analyst and Premium plans.
IOC Appendix now
Saved successfully.
OSINT Library
Saved Limited preview
Last saved: 2026-03-22T03:59:29+00:00

OSINT Library — Kitty Search


2026-03-22 — Telemetr — “Kitty Search \ NEWS”

Full OSINT references available for Research / Analyst.
OSINT Library now
Saved successfully.
Social Medial & Communication
SOCMINT integrated: 0/4
Address Verification SOCMINT
t.me/kit************ Restricted Not integrated
t.me/Kit************* Restricted Not integrated
t.me/Kri********* Restricted Not integrated
t.me/kit********** Restricted Not integrated
Notes: preview mode hides sensitive social/contact details.
Reference Images/Associated Evidence Limited
Showing 1–1 of 1 images
Propaganda Free Preview
Propaganda