| ID | Votes | Profile Description |
|---|---|---|
| GALLIUM | 3 | Gallium, also known as Alloy Taurus, is a China-aligned threat actor known for executing actions with malicious intent in the cyber domain. In recent years, Gallium has been associated with various significant cyber-espionage campaigns. The group targeted telecommunication entities in the Middle Eas |
| Sword2033 | 2 | Sword2033 is a new and previously undocumented backdoor tool used by the China-linked threat actor known as Alloy Taurus. This group, also referred to as GALLIUM or Softcell, has been actively targeting Linux systems with a variant of the PingPull backdoor, while also deploying Sword2033 in their op |
| Stately Taurus | 2 | Stately Taurus is a sophisticated malware associated with a Chinese Advanced Persistent Threat (APT) group that conducts cyberespionage campaigns. This group has been observed targeting government entities, as well as religious and non-governmental organizations across Europe and Asia. The malware i |
| ID | Type | Votes | Profile Description |
|---|---|---|---|
| PingPull | Unspecified | 4 | PingPull is a malicious software (malware) developed by the Chinese nation-state group known as Alloy Taurus, also referred to as Gallium. The malware is designed to exploit and damage computer systems, with capabilities such as stealing personal information, disrupting operations, or holding data h |
| Gelsemium | is related to | 2 | Gelsemium is a type of malware, a malicious software designed to infiltrate and damage computer systems. It can be introduced into a system through suspicious downloads, emails, or websites, often without the user's knowledge. Once it has gained access, Gelsemium has the ability to steal personal in |
| Preview | Source Link | CreatedAt | Title |
|---|---|---|---|
| InfoSecurity-magazine | 10 months ago | North Korean Hackers Target macOS Crypto Engineers With Kandykorn | |
| InfoSecurity-magazine | a year ago | Sophisticated APT Clusters Target Southeast Asia | |
| CERT-EU | a year ago | New Report Uncovers 3 Distinct Clusters of China-Nexus Attacks on Southeast Asian Government | |
| Unit42 | a year ago | Persistent Attempts at Cyberespionage Against Southeast Asian Government Target Have Links to Alloy Taurus | |
| Unit42 | a year ago | Cyberespionage Attacks Against Southeast Asian Government Linked to Stately Taurus, Aka Mustang Panda | |
| Unit42 | a year ago | Rare Backdoors Suspected to be Tied to Gelsemium APT Found in Targeted Attack in Southeast Asian Government | |
| Unit42 | a year ago | Unit 42 Researchers Discover Multiple Espionage Operations Targeting Southeast Asian Government | |
| CERT-EU | a year ago | My Tea's not cold : an overview of China's cyber threat – Global Security Mag Online | |
| Unit42 | a year ago | Chinese Alloy Taurus Updates PingPull Malware | |
| CERT-EU | a year ago | Chinese Hackers Spotted Using Linux Variant of PingPull in Targeted Cyberattacks | |
| CERT-EU | a year ago | Chinese APT group Alloy Taurus unleashes new Linux variant of PingPull malware | |
| CERT-EU | a year ago | Новый бэкдор Sword2033 выдаёт китайские хакерские атаки за действия южноафриканских военных | |
| CERT-EU | a year ago | State-purchased spyware prevalent | |
| CERT-EU | a year ago | New Linux malware variants leveraged in Chinese cyberespionage campaign | |
| Securityaffairs | a year ago | Alloy Taurus APT uses a Linux variant of PingPull malware | |
| CERT-EU | a year ago | Chinese Hackers Spotted Using Linux Variant of PingPull in Targeted Cyberattacks - GIXtools | |
| CERT-EU | a year ago | Traffic to South African military websites from Linux server? Infection symptom of PingPull malware | |
| CERT-EU | a year ago | China-linked Alloy Taurus APT uses a Linux variant of PingPull malware | IT Security News | |
| CERT-EU | a year ago | Chinese APT Alloy Taurus Is Back - Linux Variant of PingPull Malware Is Active | |
| CERT-EU | a year ago | Cyber security week in review: April 28, 2023 |