ID | Votes | Profile Description |
---|---|---|
Cobalt Kitty | 2 | Operation Cobalt Kitty, a significant cyber espionage Advanced Persistent Threat (APT), was executed by the OceanLotus Group, also known as APT32, Canvas Cyclone, APT-C-00, and Cobalt Kitty. Active since at least 2012, the group targeted a global corporation in Asia during this operation. Over the c |
Oceanlotus Group | 2 | The OceanLotus Group, also known as APT32, is a threat actor suspected to originate from Vietnam. This group poses a significant threat to foreign companies investing in Vietnam's manufacturing, consumer products, consulting, and hospitality sectors. The group operates with a typical 9 AM to 6 PM wo |
OceanLotus | 2 | OceanLotus, also known as APT32, is a threat actor suspected to be linked with Vietnam. It primarily targets foreign companies involved in manufacturing, consumer products, consulting, and hospitality sectors that are investing or planning to invest in Vietnam. The group's recent activities indicate |
SeaLotus | 1 | None |
Charming Kitten | 1 | Charming Kitten, an Iranian Advanced Persistent Threat (APT) group, also known as ITG18, Phosphorous, and TA453, is a significant cybersecurity threat. This threat actor has been associated with numerous malicious activities, exhibiting advanced and sophisticated social-engineering efforts. The grou |
ID | Type | Votes | Profile Description |
---|---|---|---|
WINDSHIELD | Unspecified | 1 | Windshield is a notorious malware, a harmful program designed to exploit and damage computers or devices. It is one of the signature malware payloads deployed by APT32 operations, alongside KOMPROGO, SOUNDBITE, and PHOREAL. This malicious software can infiltrate systems through suspicious downloads, |
SOUNDBITE | Unspecified | 1 | Soundbite is a type of malware, a harmful software designed to exploit and damage computer systems. It infiltrates systems through suspicious downloads, emails, or websites, often without the user's knowledge. Once inside, it can steal personal information, disrupt operations, or even hold data host |
PHOREAL | Unspecified | 1 | Phoreal is a type of malware, or malicious software, that is designed to exploit and damage computer systems. It can infiltrate your system through suspicious downloads, emails, or websites and can steal personal information, disrupt operations, or even hold data hostage for ransom. This malware has |
KOMPROGO | Unspecified | 1 | Komprogo is a type of malware, a harmful software program designed to exploit and damage computer systems or devices. It infiltrates systems through suspicious downloads, emails, or websites, often without the user's knowledge. Once inside, it can steal personal information, disrupt operations, or e |
ID | Type | Votes | Profile Description |
---|---|---|---|
APT19 | Unspecified | 1 | APT19, also known as the Codoso Team, is a threat actor suspected to be sponsored by the Chinese government to some degree. This group, potentially composed of freelancers, primarily targets the legal and investment sectors. They are known for their use of sophisticated malware like BEACON and COBAL |
ID | Type | Votes | Profile Description |
---|---|---|---|
CVE-2016-7255 | Unspecified | 1 | None |
CVE-2017-11882 | Unspecified | 1 | CVE-2017-11882 is a software vulnerability present in Microsoft's Equation Editor, allowing for the execution of malicious code. This vulnerability was exploited by a tool known as Royal Road, which is shared among various Chinese state-sponsored groups. The tool facilitates the creation of harmful |
Source | CreatedAt | Title |
---|---|---|
DARKReading | 4 months ago | Vietnamese Cybergang Nets Financial, Social Media Data |
InfoSecurity-magazine | 5 months ago | Iranian Hackers Target Israel to Sway Public Opinion in Hamas Conflict |
MITRE | 7 months ago | Obfuscation in the Wild: Targeted Attackers Lead the Way in Evasion Techniques « Threat Research Blog |
CERT-EU | 9 months ago | Hackers target US Facebook biz accounts with potent malware cocktail |
CERT-EU | 10 months ago | Cybersecurity threatscape of Asia: 2022–2023 | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #ransomware | National Cyber Security Consulting |
CERT-EU | a year ago | Does it matter if your company is hacked? |
CERT-EU | a year ago | Japan in the Crosshairs of Many State-Sponsored Threat Actors New Report Finds |
CERT-EU | a year ago | New SPECTRALVIPER Backdoor Targeting Vietnamese Public Companies |
MITRE | a year ago | Cyber Espionage is Alive and Well: APT32 and the Threat to Global Corporations | Mandiant |
MITRE | a year ago | Operation Cobalt Kitty: A large-scale APT in Asia carried out by the OceanLotus Group |
MITRE | a year ago | OceanLotus ships new backdoor using old tricks | WeLiveSecurity |
MITRE | a year ago | Fake or Fake: Keeping up with OceanLotus decoys | WeLiveSecurity |
MITRE | a year ago | Advanced Persistent Threats (APTs) | Threat Actors & Groups |
MITRE | a year ago | Tracking OceanLotus’ new Downloader, KerrDown |
Securityaffairs | a year ago | Hyundai suffered a data breach that impacted customers in France and Italy |