Octopus

Malware updated 4 days ago (2024-11-29T14:00:18.512Z)
Download STIX
Preview STIX
Octopus is a malware, a harmful program designed to exploit and damage computer systems. It can infiltrate systems through suspicious downloads, emails, or websites, often without the user's knowledge. Once inside, it can steal personal information, disrupt operations, or even hold data hostage for ransom. This malware has been associated with various incidents and developments across different sectors. In 2020, the legal team at UK energy retailer Octopus Energy developed Kraken, a customer billing platform that was subsequently licensed to rival energy providers like Eon in the UK and overseas markets. The same year, the company's legal team advised on the acquisition and integration of 1.5 million customers from Bulb, a rival provider that went into special administration in 2021. This move significantly contributed to the growth of Octopus Energy. Secret Double Octopus (SDO), a leader in workforce passwordless MFA, collaborated with ForgeRock Enterprise Connect Passwordless to integrate SDO's Octopus platform for passwordless MFA. This integration aimed to deliver a greater return on investment than traditional MFA methods that rely on passwords. The Octopus platform decouples user authentication from backend identity management, enabling comprehensive coverage for workforce use cases.
Description last updated: 2024-05-04T16:26:45.875Z
What's your take? (Question 1 of 5)
Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.
Aliases We are not currently tracking any aliases
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Telegram
Malware
Windows
Espionage
Apt
Trojan
Phishing
Analyst Notes & Discussion
Be the first to leave your mark here! Log in to share your views and vote.
Associated Threat Actors
To see the evidence that has resulted in these threatActor associations, create a free account
Alias DescriptionAssociation TypeVotes
The Nomadic Octopus Threat Actor is associated with Octopus. Nomadic Octopus, a suspected Russian Advanced Persistent Threat (APT) group, has been engaged in a cyber-espionage campaign known as Paperbug since 2020. The group infiltrated a Tajikistani carrier to spy on government officials and public service infrastructures, compromising government networks, iUnspecified
3
The DustSquad Threat Actor is associated with Octopus. DustSquad, also known as Nomadic Octopus, is a notable threat actor that has been implicated in several cyber-espionage campaigns. Throughout 2018, DustSquad, along with other actors like IndigoZebra and Sofacy, targeted political entities in Central Asia using the Octopus malware. This was revealedUnspecified
3
The APT28 Threat Actor is associated with Octopus. APT28, also known as Fancy Bear, Pawn Storm, Sofacy Group, Sednit, and STRONTIUM, is a threat actor linked to Russia. The group has been associated with cyber espionage campaigns across Central Asia and has historically targeted areas of national security, military operations, and geopolitical influUnspecified
2
The Paperbug Threat Actor is associated with Octopus. Paperbug is a cyber-espionage campaign executed by a suspected Russian threat actor known as Nomadic Octopus, also referred to as DustSquad. The Swiss cybersecurity company Prodaft has released a report detailing the actions of this group, outlining their tactics, techniques, and procedures (TTPs). Unspecified
2
The Sofacy Threat Actor is associated with Octopus. Sofacy is a threat actor group that has been observed using multiple languages to create variants of the Zebrocy Trojan and Cannon. In one campaign, they relied heavily on filenames to lure victims into launching weaponized documents. The group packed only Delphi variants in an attempt to increase eUnspecified
2
Source Document References
Information about the Octopus Malware was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
PreviewSource LinkCreatedAtTitle
CERT-EU
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
MITRE
2 years ago
CERT-EU
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
MITRE
2 years ago
MITRE
2 years ago
CERT-EU
2 years ago
CSO Online
2 years ago
CERT-EU
2 years ago