Neo

Threat Actor Profile Updated 6 days ago
Download STIX
Preview STIX
Neo is a threat actor that has been identified as posing significant security risks in the cybersecurity landscape. Two vulnerabilities have been associated with this group, namely CVE-2023-32268 and CVE-2023-46282, both of which have been detected in Opcenter Quality and SIMATIC PCS neo software versions prior to V18 Update 3. These vulnerabilities scored 7.2 and 7.1 respectively on the severity scale, indicating their potential for causing substantial harm. The threat actor's activities have not been limited to cyber exploitation; there have been instances where Neo has been implicated in physical threat operations, with an expected increase in such activities projected for 2024. In addition to cyber threats, Neo has been linked to violent extremist activities, including those of white supremacist and neo-Nazi groups. A case was reported in Moscow involving prominent neo-Nazi Maxim Martsinkevich, although the court dismissed it posthumously. Furthermore, thousands of University of California Irvine students were exposed to disturbing content after their Discord groups were reportedly attacked by a possible neo-Nazi group, believed to be associated with Neo. The threat actor has also been connected to business-related risks. Dominic Neo, VP of sales at Stellar Cyber, expressed delight at welcoming Orca Tech as their distributor in Australia, unaware of the potential threat posed by GenerativeAI. This move granted GenerativeAI access to all of Neo’s data, enabling it to learn more about his company than he ever could. This event underscores the importance of vigilance when forming partnerships, as other companies may potentially beat Neo's company to market, file patents, and steal their thunder.
What's your take? (Question 1 of 5)
Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.
Possible Aliases / Cluster overlaps
It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at.
IDVotesProfile Description
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Webshell
Bitcoin
Telegram
Ping
Apt
Russia
Ukraine
Singapore
Web Shell
Siemens
Denial of Se...
Windows
Vulnerability
Denial of Se...
Net
Nato
Ukrainian
Flashpoint
Iran
Discord
Armenian
China
Australia
Banking
Fraud
India
Associated Malware
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
FluhorseUnspecified
1
FluHorse, a newly discovered malware strain, has been active since May 2022 and was first documented by Check Point in early May 2023. This Android stealer is typically distributed via email phishing campaigns and mimics popular apps or appears as a fake dating application to deceive victims into in
GriefUnspecified
1
Grief is a malicious software, or malware, known for its destructive capabilities to exploit and damage computer systems. It infiltrates unsuspecting users' devices through suspicious downloads, emails, or websites, often without their knowledge. Once inside a system, Grief can steal personal inform
Associated Threat Actors
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
SandwormUnspecified
1
Sandworm, a threat actor linked to Russia, has been identified as a significant cybersecurity risk. Known for its sophisticated and malicious activities, Sandworm has notably compromised 11 Ukrainian telecommunications providers, disrupting services and posing a substantial threat to the digital inf
Associated Vulnerabilities
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
CVE-2023-5379Unspecified
1
None
CVE-2023-36005Unspecified
1
None
CVE-2023-36004Unspecified
1
None
CVE-2023-35643Unspecified
1
None
CVE-2023-35638Unspecified
1
None
CVE-2023-35622Unspecified
1
None
CVE-2023-35621Unspecified
1
None
CVE-2023-46285Unspecified
1
None
CVE-2023-46284Unspecified
1
None
CVE-2023-46283Unspecified
1
None
CVE-2023-46156Unspecified
1
None
CVE-2023-32268Unspecified
1
None
CVE-2023-46282Unspecified
1
None
CVE-2023-46281Unspecified
1
None
CVE-2023-36010Unspecified
1
None
Source Document References
Information about the Neo Threat Actor was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
SourceCreatedAtTitle
Recorded Future
6 days ago
Israel-Hamas Conflict and US Elections Drive Violent Extremist Threats in 2024 | Recorded Future
Recorded Future
a month ago
Israel-Hamas Conflict and US Elections Drive Violent Extremist Threats in 2024 | Recorded Future
CERT-EU
4 months ago
XDR security vendor Stellar Cyber enters Australian market
CERT-EU
4 months ago
Why Is Putin Afraid of Jehovah’s Witnesses?
CERT-EU
5 months ago
‘Cranes threat’ reflects how ignorant, paranoid US politicians are
CERT-EU
6 months ago
Armenia And Iran: A Vital Strategic Partnership – Analysis
CERT-EU
6 months ago
Search | arXiv e-print repository
CERT-EU
6 months ago
Neo-nazi hackers target UC Irvine with ‘gore raid’ | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #hacker | National Cyber Security Consulting
CERT-EU
9 months ago
Cybersecurity Awareness Month: AI is Learning, Even When You Don’t Think You’re Teaching
CERT-EU
9 months ago
Zhiniang Peng (@edwardzpeng) - Talks
CERT-EU
9 months ago
Cboe Global Markets Reports Trading Volume for September 2023
CERT-EU
a year ago
US Still Doesn't Dare Flying Spy Drones Over Black Sea - Global Research
CERT-EU
10 months ago
Flipkart Teases Deals on These Mobiles Ahead of the Big Billion Days Sale
CERT-EU
9 months ago
Beijing slaps Foxconn with a tax audit
CERT-EU
a year ago
FluHorse : Newly Discovered Malware Disguised as Legitimate and Popular Android Apps Targeting East Asia Highlights – Global Security Mag Online
CERT-EU
a year ago
Biden's Blunders, From A to Z
CERT-EU
9 months ago
BTQ Announces Ecosystem Partnership With Cysic Over Keelung - A Zero-Knowledge Domain Specific Language for Fast, Private and Secure Applications
CERT-EU
a year ago
CNN Let Slip That The ICC’s Arrest Warrant Is Revenge For The West’s Failure To Isolate Russia
CERT-EU
a year ago
SEO Expert Hired and Fired By Ashley Madison Turned on Company, Promising Revenge – GIXtools
Canadian Centre for Cyber Security
10 months ago
[Control systems] Siemens security advisory (AV23-542) - Canadian Centre for Cyber Security