Orange

Threat Actor updated 4 months ago (2024-05-04T21:32:18.655Z)
Download STIX
Preview STIX
Orange, a threat actor, has been implicated in several significant cybersecurity incidents. In August 2023, the group exploited a vulnerability (CVE-2023-50430 and CVE-2023-50429) in IzyBat Orange casiers, allowing SQL injection through getEnsemble.php ensemble. This incident highlighted the potential for serious data breaches and system compromise. Additionally, Orange Spain, the country's second-largest network provider, experienced substantial outages in January 2024 following the compromise of its account with RIPE, the regional internet registry used by Europe, the Middle East, and Central Asia. This breach was reportedly due to an Orange Spain employee being infected by the Raccoon infostealer malware in September 2023. In a separate event, a threat actor named “Ms_Snow_OwO” announced that they had gained access to a RIPE administrator account belonging to telecommunications provider Orange Spain. Despite these security breaches, Orange Spain stated that no customer data was compromised. The compromise of cellular carrier Orange Spain is one of the latest instances illustrating the threat posed by Orange and similar entities. The attack led to a significant internet outage affecting company customers, further emphasizing the operational risks associated with such cyber threats. The involvement of Orange in these incidents underscores the need for robust cybersecurity measures across industries. Various companies, including Microsoft Corp and French telecom firm Orange SA, have committed funding as part of a consortium aimed at tackling such threats. However, as per Dominic Trott, director of strategy and alliances at Orange Cyberdefense, criminalizing ransom payments could potentially shift the focus from perpetrators to victims, thereby triggering unintended consequences like reluctance to report breaches. As the cybersecurity landscape continues to evolve, it's crucial to stay vigilant against the activities of threat actors like Orange.
Description last updated: 2024-05-04T21:32:18.620Z
Aliases We are not currently tracking any aliases
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Analyst Notes & Discussion
Be the first to leave your mark here! Log in to share your views and vote.
Source Document References
Information about the Orange Threat Actor was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
PreviewSource LinkCreatedAtTitle
CERT-EU
8 months ago
UK CISO’s are cowing to ransomware demands more than you think, here’s why they shouldn’t pay up | #ransomware | #cybercrime | National Cyber Security Consulting
CERT-EU
8 months ago
2024 Regulatory, Compliance, and Enforcement Predictions for Life Sciences Companies
CERT-EU
8 months ago
OW2con : Call for Presentations - Deadline February 25, 2024 – Global Security Mag Online
CERT-EU
8 months ago
Windows systems targeted by updated Bandook RAT
CERT-EU
8 months ago
Administrator Account for Middle East Internet Registry Hacked | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #hacker | National Cyber Security Consulting
Checkpoint
8 months ago
8th January – Threat Intelligence Report - Check Point Research
CERT-EU
8 months ago
Cyber Security Today, Jan. 8, 2024 – How a Spanish cellular carrier’s network was knocked offline, and more | IT World Canada News
Securityaffairs
8 months ago
Security Affairs newsletter Round 453 by Pierluigi Paganini
CERT-EU
8 months ago
Google: Malware abusing API is standard token theft, not an API issue
CERT-EU
8 months ago
New macOS malware SpectralBlur ID'd as North Korean backdoor
CERT-EU
8 months ago
Major Spanish network provider disrupted by cyberattack
CERT Polska
2 years ago
List of malicious domains
CERT-EU
10 months ago
Orange Business and MachineMax partner to optimise Australian heavy machinery operations
CERT-EU
10 months ago
AI Act's last mile, MEPs throw the gauntlet on EUCS
CERT-EU
a year ago
Global Cybersecurity Experts Return for the Third Annual Fortinet Security Summit and Tech Expo at the Fortinet Championship Golf Tournament | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #ransomware | National Cyber Security Consulting
CERT-EU
a year ago
FBI Investigates Cyberattack on US Healthcare Systems - IT Governance USA Blog
InfoSecurity-magazine
a year ago
Cyber Extortionists Seek Out Fresh Victims in LatAm and Asia
CERT-EU
a year ago
"Disappearing" implants, followed by first fixes for exploited Cisco IOS XE zero-day - Help Net Security
CERT-EU
a year ago
Number of hacked Cisco IOS XE devices plummets from 50K to hundreds
CERT-EU
a year ago
Cisco discloses new IOS XE zero-day exploited to deploy malware implant