Common Information
| Type | Value |
|---|---|
| Value |
Camaro Dragon |
| Category | Actor |
| Type | Threat-Actor |
| Misp Type | Cluster |
| Description | In early 2023, the Check Point Incident Response Team (CPIRT) team investigated a malware incident at a European healthcare institution involving a set of tools mentioned in the Avast report in late 2022. The incident was attributed to Camaro Dragon, a Chinese-based espionage threat actor whose activities overlap with activities tracked by different researchers as Mustang Panda and LuminousMoth, whose focus is primarily on Southeast Asian countries and their close peers. |
| Details | Published | Attributes | CTI | Title | ||
|---|---|---|---|---|---|---|
| Details | Website | 2024-09-18 | 18 | Stately Taurus APT IOCs - SEC-1275-1 | ||
| Details | Website | 2024-09-10 | 1 | Mustang Panda Feeds Worm-Driven USB Attack Strategy | ||
| Details | Website | 2024-09-09 | 2 | Chinese Hackers Exploit Visual Studio Code in Southeast Asian Cyberattacks | ||
| Details | Website | 2024-09-09 | 2 | Chinese Hackers Exploit Visual Studio Code in Southeast Asian Cyberattacks - RedPacket Security | ||
| Details | Website | 2024-09-06 | 33 | Chinese APT Abuses VSCode to Target Government in Asia | ||
| Details | Website | 2024-03-26 | 26 | ASEAN Entities in the Spotlight: Chinese APT Group Targeting | ||
| Details | Website | 2024-01-29 | 4 | Risky Biz News: DOJ and FTC tell companies to stop deleting chats | ||
| Details | Website | 2023-11-20 | 4 | Amid Military Buildup, China Deploys Mustang Panda in the Philippines | ||
| Details | Website | 2023-10-18 | 9 | Risky Biz News: Mysterious APT compromises Asian government's secure USBs | ||
| Details | Website | 2023-10-17 | 0 | Persistent Espionage Campaign Targets APAC Governments | ||
| Details | Website | 2023-09-07 | 35 | My Tea's not cold. An overview of China's cyber threat | ||
| Details | Website | 2023-07-18 | 4 | แฟลชไดรฟ์ USB ที่ติดมัลแวร์ SOGU และ SNOWYDRIVE กำลังโจมตีเป้าหมายทั่วโลก | ||
| Details | Website | 2023-07-18 | 20 | Stealth Mode: Chinese Cyber Espionage Actors Continue to Evolve Tactics to Avoid Detection | Mandiant | ||
| Details | Website | 2023-07-17 | 2 | Malicious USB Drives Targetinging Global Targets with SOGU and SNOWYDRIVE Malware | ||
| Details | Website | 2023-07-17 | 105 | Picus Cyber Threat Intelligence Report June 2023: Key Threat Actors, Regions and Industries at Risk | ||
| Details | Website | 2023-07-12 | 2 | Chinese Group Storm-0558 Hacked European Govt Emails, Microsoft | ||
| Details | Website | 2023-07-10 | 3 | European Government Agencies Targeted In SmugX Campaign | ||
| Details | Website | 2023-07-09 | 61 | Bluepurple Pulse: week ending July 9th | ||
| Details | Website | 2023-07-04 | 2 | Cyber Briefing: 2023.07.04 | ||
| Details | Website | 2023-07-04 | 0 | Novel PlugX malware attacks target European diplomats | ||
| Details | Website | 2023-07-03 | 2 | Chinese Hackers Use HTML Smuggling to Infiltrate European Ministries with PlugX | ||
| Details | Website | 2023-07-03 | 0 | Chinese Threat Actors Target Europe in SmugX Campaign | ||
| Details | Website | 2023-07-03 | 63 | Chinese Threat Actors Targeting Europe in SmugX Campaign - Check Point Research | ||
| Details | Website | 2023-06-28 | 2 | Staff Picks for Splunk Security Reading June 2023 | ||
| Details | Website | 2023-06-27 | 3 | Les dernières cyberattaques détectées | 27 juin 2023 |