| ID | Votes | Profile Description |
|---|---|---|
| Bronze Highland | 5 | Bronze Highland, also known as Evasive Panda and Daggerfly, is a Chinese-speaking advanced persistent threat (APT) group that has been active since at least 2012. The group conducts cyberespionage against individuals in mainland China, Hong Kong, Macao, and Nigeria, along with specific organizations |
| Evasive Panda | 5 | Evasive Panda, a threat actor group also known as Bronze Highland and Daggerfly, has been identified as a significant cybersecurity threat. This group, believed to be aligned with China, has been deploying custom implants such as MgBot, Nightdoor, and a macOS downloader component, using these tools |
| APT41 | 2 | APT41, also known as Winnti, Wicked Panda, and Wicked Spider, is a sophisticated threat actor attributed to China. This group has been active since at least 2012, targeting organizations across 14 countries. The group is known for its extensive use of various code families and tools, with at least 4 |
| GALLIUM | 1 | Gallium, also known as Alloy Taurus, is a China-aligned threat actor known for executing actions with malicious intent in the cyber domain. In recent years, Gallium has been associated with various significant cyber-espionage campaigns. The group targeted telecommunication entities in the Middle Eas |
| ID | Type | Votes | Profile Description |
|---|---|---|---|
| Mgbot | Unspecified | 4 | MgBot is a malicious software (malware) used exclusively by the cyber threat group known as Evasive Panda. This malware, along with another custom-made Windows backdoor called Nightdoor, forms part of the group's toolkit for cyber attacks. These tools are typically delivered via malicious downloader |
| MacMa | Unspecified | 3 | Macma is a potent malware that has been linked to the cyber-espionage group known as Daggerfly, also tracked as Evasive Panda and Bronze Highland. The malware, sometimes referred to as OSX.MacMa, was discovered loaded onto iPhone and macOS devices, enabling unauthorized access and data theft. Threat |
| Nightdoor | Unspecified | 2 | Nightdoor is a complex malware attributed to the Evasive Panda APT group, a China-linked cyber-espionage team known for its diverse attack vectors and focus on surveillance of individuals and organizations in Asia and Africa. The malware was introduced by the group in 2020 and has been used alongsid |
| ID | Type | Votes | Profile Description |
|---|---|---|---|
| Alloy Taurus | Unspecified | 1 | Alloy Taurus, a threat actor group, has been identified as a significant cybersecurity concern due to its persistent attempts at cyberespionage, primarily targeting the government sector in Southeast Asia. The activity of this group was first observed in early 2022 and continued throughout 2023, dur |
| APT10 | Unspecified | 1 | APT10, also known as the Menupass Team, is a threat actor believed to operate on behalf of the Chinese Ministry of State Security (MSS). The group has been active since 2009 and is suspected to be based in Tianjin, China, according to research by IntrusionTruth in 2018. APT10 has primarily targeted |
| Dark Pink | Unspecified | 1 | Dark Pink, also known as Saaiwc Group, is a Chinese-aligned cyberespionage entity that has been particularly active since mid-2022. The threat actor has conducted spearphishing campaigns against government, military, and non-profit organizations in Southeast Asia and parts of Europe, using sophistic |
| ID | Type | Votes | Profile Description |
|---|---|---|---|
No associations to display |
| Source | CreatedAt | Title |
|---|---|---|
| Securityaffairs | 3 days ago | Chinese Daggerfly uses a new version of Macma macOS backdoor |
| DARKReading | 3 days ago | China's 'Evasive Panda' APT Spies on Taiwan Targets Across Platforms |
| InfoSecurity-magazine | 4 days ago | Chinese Espionage Group Upgrades Malware to Target All Major OS |
| BankInfoSecurity | 4 days ago | Chinese Cyberespionage Group Expands Malware Arsenal |
| CERT-EU | 5 months ago | Well-equipped, resourced Chinese-backed hacking group targeting Tibetan networks | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #hacker | National Cyber Security Consulting |
| CERT-EU | 5 months ago | China Panda APT Hacking Websites To Infect Windows And MacOS Visitors With Malware | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #hacker | National Cyber Security Consulting |
| CERT-EU | 5 months ago | Chinese Evasive Panda Targets Tibetans with Nightdoor Backdoor |
| CERT-EU | 5 months ago | Chinese Panda APT Hacking Websites To Infect Windows And MacOS Users |
| InfoSecurity-magazine | 5 months ago | Evasive Panda Targets Tibet With Trojanized Software |
| CERT-EU | 5 months ago | Evasive Panda leverages Monlam Festival to target Tibetans |
| DARKReading | 5 months ago | China-Linked Cyber Spies Blend Watering Hole, Supply Chain Attacks |
| DARKReading | a year ago | China's 'Evasive Panda' Hijacks Software Updates to Deliver Custom Backdoor |
| InfoSecurity-magazine | a year ago | Ukraine's CERT-UA Exposes Gamaredon's Rapid Data Theft Methods |
| CERT-EU | 10 months ago | My Tea's not cold : an overview of China's cyber threat – Global Security Mag Online |
| CERT-EU | a year ago | Alibaba Cloud's PostgreSQL databases impacted by critical bugs |
| CERT-EU | a year ago | Chinese Cyberspies Delivered Malware via Legitimate Software Updates |
| CERT-EU | a year ago | Cyber security week in review: April 21, 2023 |
| InfoSecurity-magazine | a year ago | Evasive Panda's Backdoor MgBot Delivered Via Chinese Software Updates |
| CERT-EU | a year ago | Cyber security week in review: April 28, 2023 |
| CERT-EU | a year ago | Novel macOS malware leveraged in BlueNoroff attacks |