Mantis

Threat Actor updated 4 months ago (2024-05-04T20:28:33.876Z)

Download STIX

Preview STIX

Mantis is a recognized threat actor, known for its sophisticated cyber operations. This group has been linked to several high-profile attacks and campaigns, including one that was tracked by Recorded Future as TAG-63, also known as APT-C-23. Mantis has shown connections to other notable threat groups such as Desert Falcons and Arid Viper, marking it as a significant player in the cyber espionage landscape. The group's techniques have evolved over time, with a notable instance in July of an unidentified year when another Advanced Persistent Threat (APT) group, Praying Mantis, exploited serialization flaws in ASP.NET applications to deploy fileless malware on IIS servers. One of the most alarming developments related to Mantis is the creation of the Tiny Mantis Botnet, which has demonstrated the capacity to launch Distributed Denial of Service (DDoS) attacks more powerful than those executed by the infamous Mirai botnet. This development underscores the increasing sophistication and potential damage that Mantis can inflict upon targeted systems. The botnet's power has been highlighted in multiple reports, emphasizing the escalating threat it poses to digital security worldwide. In response to these threats, cybersecurity professionals are encouraged to pursue advanced certifications like the Certified Information Systems Security Professional (CISSP), as advised by Jay Martin, security practice lead at Blue Mantis. Additionally, Robert Fitzgerald, Field CISO with Blue Mantis, advocates for training new professionals in the field. Through comprehensive understanding of attacker tactics and techniques, cybersecurity experts can preemptively block threats even before they are recognized as malware, as exemplified by the Decoy Dog case study.

Description last updated: 2024-03-18T11:16:52.255Z

What's your take? (Question 1 of 1)

Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.

Aliases We are not currently tracking any aliases

Miscellaneous Associations

Other elements of context that could aid in the identification of relevance

Apt

Malware

Analyst Notes & Discussion

Be the first to leave your mark here! Log in to share your views and vote.

Source Document References

Information about the Mantis Threat Actor was read from the documents corpus below. This display is limited to 20 results, create a free account to see more

Source Link	CreatedAt	Title
CERT-EU	6 months ago	5 certifications that can boost a cybersecurity leader’s career \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #ransomware \| National Cyber Security Consulting
CERT-EU	a year ago	Hamas-linked app offers window into cyber infrastructure, possible links to Iran
CERT-EU	a year ago	Takeaways from Black Hat USA 2023
CSO Online	2 years ago	Microsoft tells Exchange admins to revert previously recommended antivirus exclusions
CERT-EU	7 months ago	New Linux Malware "Migo" Exploits Redis for Cryptojacking, Disables Security
CERT-EU	8 months ago	What the cybersecurity workforce can expect in 2024
CERT-EU	10 months ago	12 Best Vulnerability Management Systems & Tools 2023
CERT-EU	a year ago	Google, Cloudflare, and AWS Disclose Largest DDoS Attack in History
CERT-EU	a year ago	New Diicot Threat Group Targets SSH Servers with Brute-Force Malware
CERT-EU	a year ago	Decoy Dog Malware Upgraded to Include New Features
CERT-EU	a year ago	Blue Mantis to Host 2023 Cloudscape Technology Conference in Newport, Rhode Island
CERT-EU	a year ago	Mantis: New Tooling Used in Attacks Against Palestinian Targets – Cyber Security Review