temp.overboard

Threat Actor Profile Updated 3 months ago
Download STIX
Preview STIX
Temp.Overboard, also known as BlackTech, Circuit Panda, Palmerworm, and several other aliases, is a threat actor that has been active in the cybersecurity landscape since at least 2007. This group is known for its operations against targets in East Asia, specifically Taiwan, Japan, and Hong Kong. As a threat actor, Temp.Overboard represents a human entity or entities executing actions with malicious intent, which could range from a single person to a private company or even part of a government entity. BlackTech's activities have been tracked by cybersecurity experts who have identified a consistent pattern of cyberattacks against government entities and technology companies. These attacks have not been confined to East Asia; the group has also targeted similar organizations in the United States. The activity of this threat actor has been ongoing since approximately 2010, indicating a long-term, sustained campaign of cyber-espionage and potentially other forms of cybercrime. The naming conventions for such threat actors can be complex and varied across the cybersecurity industry, but regardless of the name—Temp.Overboard, BlackTech, Circuit Panda, Palmerworm, HUAPI, Manga Taurus, Red Djinn—the group represents a significant and enduring cybersecurity threat. Understanding and tracking the activities of such groups is crucial for developing effective defense strategies and mitigating potential damage from their operations.
What's your take? (Question 1 of 4)
Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.
Possible Aliases / Cluster overlaps
It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at.
IDVotesProfile Description
BlackTech
2
BlackTech is a threat actor, or a group responsible for carrying out malicious cyber activities. Known for its links to China, BlackTech focuses on gathering intelligence from technology and government organizations, predominantly in the Asia-Pacific region. This group has shown a high degree of sop
Palmerworm
1
Palmerworm, also known as BlackTech, Temp.Overboard, Circuit Panda, and Radio Panda, is a threat actor group that has been active since at least 2013. This group has demonstrated extensive capabilities in targeting various sectors such as government, industrial, technology, media, electronics, and t
Circuit Panda
1
Circuit Panda, also known as BlackTech, HUAPI, Manga Taurus, Palmerworm, Red Djinn, and Temp.Overboard, is a significant threat actor with a history of operating against targets in East Asia, particularly Taiwan, Japan, and Hong Kong since at least 2007. This group is part of a constellation of adva
Taurus
1
Taurus is a malicious software (malware) that has been associated with multiple cyber threat actors, notably Stately Taurus, Iron Taurus, and Starchy Taurus, all of which have connections to Chinese Advanced Persistent Threats (APTs). The malware is designed to infiltrate systems and steal personal
Red Djinn
1
None
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Associated Malware
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Threat Actors
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Vulnerabilities
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Source Document References
Information about the temp.overboard Threat Actor was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
SourceCreatedAtTitle
CERT-EU
10 months ago
Authorities warn of Chinese 'BlackTech' hackers
CERT-EU
10 months ago
China's BlackTech Hacking Group Exploited Routers to Target U.S. and Japanese Companies
BankInfoSecurity
10 months ago
Chinese Hackers Target Routers in IP Theft Campaign