Common Information
| Type | Value |
|---|---|
| Value |
Camaro Dragon |
| Category | Actor |
| Type | Threat-Actor |
| Misp Type | Cluster |
| Description | In early 2023, the Check Point Incident Response Team (CPIRT) team investigated a malware incident at a European healthcare institution involving a set of tools mentioned in the Avast report in late 2022. The incident was attributed to Camaro Dragon, a Chinese-based espionage threat actor whose activities overlap with activities tracked by different researchers as Mustang Panda and LuminousMoth, whose focus is primarily on Southeast Asian countries and their close peers. |
| Details | Published | Attributes | CTI | Title | ||
|---|---|---|---|---|---|---|
| Details | Website | 2023-06-26 | 9 | 26th June – Threat Intelligence Report - Check Point Research | ||
| Details | Website | 2023-06-23 | 0 | Chinese Espionage Malware Targets European Healthcare via USB Drives | ||
| Details | Website | 2023-06-23 | 0 | USB Drives Used as Trojan Horses By Camaro Dragon | ||
| Details | Website | 2023-06-23 | 0 | Why is it so rare to hear about Western cyber-attacks? | ||
| Details | Website | 2023-06-23 | 67 | Bluepurple Pulse: week ending June 25th | ||
| Details | Website | 2023-06-23 | 0 | Self Propagating Chinese Malware Inadvertently Affects Networked Storage Devices | Cyware Hacker News | ||
| Details | Website | 2023-06-22 | 3 | Daily Threat Intelligence - June 22 - 2023 - RedPacket Security | ||
| Details | Website | 2023-06-22 | 2 | Camaro Dragon Hackers Strike with USB-Driven Self-Propagating Malware - RedPacket Security | ||
| Details | Website | 2023-06-22 | 1 | USB Drives Spread Spyware as China's Mustang Panda APT Goes Global | ||
| Details | Website | 2023-06-22 | 40 | Beyond the Horizon: Traveling the World on Camaro Dragon’s USB Flash Drives - Check Point Research | ||
| Details | Website | 2023-06-22 | 2 | Stealthy USB: New versions of Chinese espionage malware propagating through USB devices found by Check Point Research - Check Point Blog | ||
| Details | Website | 2023-06-14 | 47 | Picus Cyber Threat Intelligence Report May 2023: Key Threat Actors, Vulnerable Regions, and Industries at Risk | ||
| Details | Website | 2023-06-14 | 53 | Behind the Scenes Unveiling the Hidden Workings of Earth Preta | ||
| Details | Website | 2023-06-14 | 53 | Behind the Scenes Unveiling the Hidden Workings of Earth Preta | ||
| Details | Website | 2023-06-09 | 2 | Day 17 — Unveiling Camaro Dragon | ||
| Details | Website | 2023-06-05 | 1 | Novel TinyNote backdoor leveraged in Camaro Dragon attacks | ||
| Details | Website | 2023-06-05 | 3 | 5th June – Threat Intelligence Report - Check Point Research | ||
| Details | Website | 2023-06-02 | 1 | Camaro Dragon Strikes with New TinyNote Backdoor for Intelligence Gathering - RedPacket Security | ||
| Details | Website | 2023-06-02 | 1 | Camaro Dragon Strikes with New TinyNote Backdoor for Intelligence Gathering | ||
| Details | Website | 2023-06-02 | 1 | Camaro Dragon Strikes with New TinyNote Backdoor for Intelligence Gathering - RedPacket Security | ||
| Details | Website | 2023-06-02 | 0 | Camaro Dragon Strikes with New TinyNote Backdoor for Intelligence Gathering | IT Security News | ||
| Details | Website | 2023-06-02 | 0 | Camaro Dragon Expands Cyber Espionage Operations with TinyNote Backdoor | ||
| Details | Website | 2023-06-01 | 35 | Malware Spotlight: Camaro Dragon’s TinyNote Backdoor - Check Point Research | ||
| Details | Website | 2023-05-25 | 1 | Latest Chinese state-sponsored attacks on critical US infrastructure spies a continuation of trend, Reports Check Point Research - Check Point Blog | ||
| Details | Website | 2023-05-23 | 29 | Anomali Cyber Watch: CloudWizard Targets Both Sides in Ukraine, Camaro Dragon Trojanized TP-Link Firmware, RA Group Ransomware Copied Babuk |