Common Information
| Type | Value |
|---|---|
| Value |
CostaRicto - G0132 |
| Category | Actor |
| Type | Mitre-Intrusion-Set |
| Misp Type | Cluster |
| Description | [CostaRicto](https://attack.mitre.org/groups/G0132) is a suspected hacker-for-hire cyber espionage campaign that has targeted multiple industries worldwide since at least 2019. [CostaRicto](https://attack.mitre.org/groups/G0132)'s targets, a large portion of which are financial institutions, are scattered across Europe, the Americas, Asia, Australia, and Africa, with a large concentration in South Asia.(Citation: BlackBerry CostaRicto November 2020) |
| Details | Published | Attributes | CTI | Title | ||
|---|---|---|---|---|---|---|
| Details | Website | 2021-10-26 | 2 | Mercenary APTs - An Exploration | ||
| Details | Website | 2021-05-13 | 2 | Threat Thursday: SombRAT — Always Leave Yourself a Backdoor | ||
| Details | Website | 2021-04-29 | 101 | UNC2447 SOMBRAT and FIVEHANDS Ransomware: A Sophisticated Financial Threat | Mandiant | ||
| Details | Website | 2020-11-13 | 0 | This Week in Security News: Ransomware Gang is Raking in Tens of Millions of Dollars and Microsoft Patch Tuesday Update Fixes 17 Critical Bugs | ||
| Details | Website | 2020-11-12 | 12 | The CostaRicto Campaign: Cyber-Espionage Outsourced |