Neo

Threat Actor updated 3 months ago (2024-11-29T14:01:44.568Z)
Download STIX
Preview STIX
Neo, a threat actor identified in the cybersecurity landscape, has been associated with several malicious activities, including exploiting vulnerabilities in Siemens SIMATIC PCS neo V4.0 and V5.0 versions. Two significant vulnerabilities (CVE-2023-32268 and CVE-2023-46282) were identified in all versions of Opcenter Quality and SIMATIC PCS neo up to V18 Update 3. The vulnerabilities had severity scores of 7.2 and 7.1 respectively, indicating their high impact on the integrity and availability of the affected systems. In 2019, this group was involved in doxing and swatting journalists across various media outlets, as reported by KrebsOnSecurity. This action involved disseminating personal information about these individuals online (doxing) and making false police reports leading to heavily armed responses at the victims' addresses (swatting). Furthermore, in 2023, Telegram, a popular messaging app, was temporarily blocked in Brazil due to its failure to cooperate with an investigation into neo-Nazi activities linked to Neo. Neo's activities are not limited to cyber exploits; they have also been implicated in real-world violence. A notable incident involved the shooting and stabbing of Cox by a neo-Nazi sympathiser before the Brexit referendum. Additionally, misinformation campaigns linked to Neo have spread across both mainstream and alternative social media platforms, news outlets, web forums, conferences, summits, and extremist platforms like the neo-Nazi website Stormfront. Projections for 2024 suggest that while white supremacist and neo-Nazi violent extremists like Neo are likely to conduct mass-casualty terrorist attacks, anti-government and anarchist violent extremists will also increase physical threat operations.
Description last updated: 2024-11-05T19:02:12.644Z
What's your take? (Question 1 of 4)
Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.
Aliases We are not currently tracking any aliases
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Telegram
Webshell
Russia
Siemens
Bitcoin
Analyst Notes & Discussion
Be the first to leave your mark here! Log in to share your views and vote.
Source Document References
Information about the Neo Threat Actor was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
PreviewSource LinkCreatedAtTitle
CISA
3 hours ago
Securityaffairs
3 hours ago
Canadian Centre for Cyber Security
3 hours ago
InfoSecurity-magazine
10 days ago
CISA
2 months ago
Krebs on Security
3 months ago
Canadian Centre for Cyber Security
5 months ago
BankInfoSecurity
6 months ago
CERT-EU
a year ago
Recorded Future
2 years ago
Canadian Centre for Cyber Security
7 months ago
Recorded Future
7 months ago
Recorded Future
8 months ago
CERT-EU
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
CERT-EU
a year ago