Earth Krahang

Threat Actor updated 23 days ago (2024-11-29T14:00:14.126Z)
Download STIX
Preview STIX
Earth Krahang is a threat actor, a term used in cybersecurity to describe an entity responsible for malicious activities. This could be an individual, a private company, or even a government organization. In the world of cybersecurity, unique names are often given to these actors to differentiate their activities and modus operandi. Earth Krahang has recently come into focus due to its significant and concerning activities. The Advanced Persistent Threat (APT) group known as Earth Krahang has been implicated in a series of cyber breaches impacting government organizations globally. The scale of these breaches is substantial, with tens of government bodies affected worldwide. The information regarding these attacks has been widely reported on various cybersecurity platforms, including Security Affairs, highlighting the severity and global reach of Earth Krahang's activities. These breaches have raised serious concerns about global cybersecurity infrastructure, particularly within government organizations. Earth Krahang's ability to compromise such a wide range of entities underscores the sophistication of their tactics and the potential damage they can cause. As a result, there is a pressing need for heightened security measures and increased vigilance to counteract these threats and protect sensitive information from being exploited by such threat actors.
Description last updated: 2024-07-14T22:25:22.575Z
What's your take? (Question 1 of 5)
Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.
Possible Aliases / Cluster overlaps
It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at. Create a free account to see the source evidence for each alias, and help fix any errors.
Alias DescriptionVotes
Earth Lusca is a possible alias for Earth Krahang. Earth Lusca, a threat actor believed to be part of the China-backed Winnti collective, has been active since at least 2019 and is known for its cyber-espionage activities. The group primarily targets government organizations in Asia, Latin America, and other regions. Recently, it has expanded its ar
3
ISOON is a possible alias for Earth Krahang. The iSoon campaign, a series of related activities with a unified goal, was centered around the Shanghai Anxun Information Technology (Anxun; aka iSOON), a key Chinese InfoSec vendor. This campaign saw a significant leak of information that put the spotlight on China's growing hacking industry. The
2
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Apt
Backdoor
Government
Vpn
ISOON
Analyst Notes & Discussion
Be the first to leave your mark here! Log in to share your views and vote.
Associated Malware
To see the evidence that has resulted in these malware associations, create a free account
Alias DescriptionAssociation TypeVotes
The Dinodasrat Malware is associated with Earth Krahang. DinodasRAT is a malicious software that has been causing significant security concerns worldwide. This malware, which targets both Windows and Linux operating systems, is designed to infiltrate your system and perform harmful activities such as stealing personal information, disrupting operations, oUnspecified
3
Source Document References
Information about the Earth Krahang Threat Actor was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
PreviewSource LinkCreatedAtTitle
Securityaffairs
4 months ago
Securityaffairs
5 months ago
Securityaffairs
5 months ago
Securityaffairs
5 months ago
Securityaffairs
5 months ago
Securityaffairs
6 months ago
Securityaffairs
6 months ago
Securityaffairs
6 months ago
Securityaffairs
6 months ago
Securityaffairs
7 months ago
Securityaffairs
8 months ago
Securityaffairs
8 months ago
Securityaffairs
8 months ago
Securityaffairs
8 months ago
BankInfoSecurity
9 months ago
Securityaffairs
9 months ago
Checkpoint
9 months ago
Securityaffairs
9 months ago
Checkpoint
9 months ago
Securityaffairs
9 months ago