Common Information
| Type | Value |
|---|---|
| Value |
Carbanak - G0008 |
| Category | Actor |
| Type | Mitre-Intrusion-Set |
| Misp Type | Cluster |
| Description | [Carbanak](https://attack.mitre.org/groups/G0008) is a cybercriminal group that has used [Carbanak](https://attack.mitre.org/software/S0030) malware to target financial institutions since at least 2013. [Carbanak](https://attack.mitre.org/groups/G0008) may be linked to groups tracked separately as [Cobalt Group](https://attack.mitre.org/groups/G0080) and [FIN7](https://attack.mitre.org/groups/G0046) that have also used [Carbanak](https://attack.mitre.org/software/S0030) malware.(Citation: Kaspersky Carbanak)(Citation: FireEye FIN7 April 2017)(Citation: Europol Cobalt Mar 2018)(Citation: Secureworks GOLD NIAGARA Threat Profile)(Citation: Secureworks GOLD KINGSWOOD Threat Profile) |
| Details | Published | Attributes | CTI | Title | ||
|---|---|---|---|---|---|---|
| Details | Website | 2024-11-07 | 12 | Category | ||
| Details | Website | 2024-11-07 | 8 | Category | ||
| Details | Website | 2024-11-07 | 0 | Ransomware Actors Evolved Operations in 2020 | CrowdStrike | ||
| Details | Website | 2024-10-24 | 15 | Scattered Spider x RansomHub: A New Partnership - ReliaQuest | ||
| Details | Website | 2024-10-07 | 643 | RST TI Report Digest: 07 Oct 2024 | ||
| Details | Website | 2024-10-07 | 9 | Carbon Spider (FIN7) APT IOCs - VIII - SEC-1275-1 | ||
| Details | Website | 2024-09-10 | 4 | Threat Hunting Case Study: Uncovering FIN7 | ||
| Details | Website | 2024-09-06 | 4 | Researchers Unpacked AvNeutralizer EDR Killer Used By FIN7 Group | ||
| Details | Website | 2024-08-19 | 1 | Threat Hunt Deep Dives: Application Shimming | ||
| Details | Website | 2024-08-06 | 1 | Webinar: Hunting for FIN7 phishing and malware infrastructure - Silent Push | ||
| Details | Website | 2024-07-10 | 136 | FIN7: Silent Push unearths the largest group of FIN7 domains ever discovered. 4000+ IOFA domains and IPs found. Louvre, Meta, and Reuters targeted in massive global phishing and malware campaigns. - Silent Push | ||
| Details | Website | 2024-07-02 | 269 | Exposing FakeBat loader: distribution methods and adversary infrastructure | ||
| Details | Website | 2024-04-17 | 26 | Threat Group FIN7 Targets the U.S. Automotive Industry | ||
| Details | Website | 2024-01-25 | 74 | Mosquito the new Infostealer arrives to Mexico - Metabase Q | ||
| Details | Website | 2023-12-27 | 13 | Risky Biz News: Barracuda discloses ESG zero-day on Xmas Eve | ||
| Details | Website | 2023-11-02 | 1 | Unveil the Secrets: Advanced Persistent Threat and Social Engineering Explained | ||
| Details | Website | 2023-11-02 | 2 | Toronto Public Library outages caused by Black Basta ransomware attack - RedPacket Security | ||
| Details | Website | 2023-11-01 | 4 | Toronto Public Library outages caused by Black Basta ransomware attack | ||
| Details | Website | 2023-10-07 | 50 | 每周高级威胁情报解读(2023.10.07~10.12) | ||
| Details | Website | 2023-09-28 | 5 | What we know about BlackCat and the MGM hack | ||
| Details | Website | 2023-09-20 | 86 | GOLD MELODY: Profile of an Initial Access Broker | ||
| Details | Website | 2023-09-18 | 9 | 18th September – Threat Intelligence Report - Check Point Research | ||
| Details | Website | 2023-09-13 | 4 | Storm-0324 caught abusing Microsoft Teams for phishing | ||
| Details | Website | 2023-07-24 | 418 | RST TI Report Digest: 24 Jul 2023 | ||
| Details | Website | 2023-07-20 | 0 | Combating Social Engineering |