Taurus

Language updated 2 months ago (2024-08-14T10:47:18.368Z)
Download STIX
Preview STIX
Taurus is a malicious software (malware) that has been associated with multiple cyber threat actors, notably Stately Taurus, Iron Taurus, and Starchy Taurus, all of which have connections to Chinese Advanced Persistent Threats (APTs). The malware is designed to infiltrate systems and steal personal information, often through suspicious downloads, emails, or websites. It was used in several significant operations, including Operation Earth Berberoka attributed to Iron Taurus, and Operation Exorcist, where overlaps were found with Stately Taurus (also known as Mustang Panda). Furthermore, the activity in Operation Diplomatic Specter originated from a shared Chinese APT operational infrastructure, exclusively used by these Chinese nation-state threat actors. The Taurus malware was also implicated in a dispute between Germany and Ukraine that escalated after a Russian leak in March 2024. This situation strained Germany-Russia relations, with German Chancellor Olaf Scholz ruling out delivering Taurus missiles to Ukraine, indicating Berlin's unwillingness to be directly involved in the war. Despite domestic and international pressure, Scholz remained firm in his refusal to supply Ukraine with the Taurus cruise missile. The Taurus malware and its associated threat actors continue to pose a significant cybersecurity risk globally. As per Trend Micro, Stately Taurus has utilized this malware in its operations. It has also been mentioned in connection with Starchy Taurus, also known as Winnti. Given the geopolitical implications surrounding the use of Taurus, particularly in the context of the Germany-Ukraine dispute, understanding and mitigating this malware's impact becomes increasingly critical.
Description last updated: 2024-05-23T15:16:27.404Z
Aliases We are not currently tracking any aliases
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Analyst Notes & Discussion
Be the first to leave your mark here! Log in to share your views and vote.
Source Document References
Information about the Taurus Language was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
PreviewSource LinkCreatedAtTitle
Unit42
a month ago
CERT-EU
8 months ago
CERT-EU
7 months ago
Unit42
5 months ago
CERT-EU
7 months ago
CERT-EU
7 months ago
CERT-EU
7 months ago
CERT-EU
7 months ago
CERT-EU
7 months ago
BankInfoSecurity
7 months ago
CERT-EU
7 months ago
CERT-EU
7 months ago
CERT-EU
7 months ago
CERT-EU
7 months ago
CERT-EU
7 months ago
CERT-EU
8 months ago
Unit42
8 months ago
DARKReading
9 months ago
InfoSecurity-magazine
9 months ago
Securityaffairs
9 months ago