Common Information
| Type | Value |
|---|---|
| Value |
ZipToken |
| Category | Actor |
| Type | Threat-Actor |
| Misp Type | Cluster |
| Description | A China-based actor that targets foreign embassies to collect data on government, defence, and technology sectors. |
| Details | Published | Attributes | CTI | Title | ||
|---|---|---|---|---|---|---|
| Details | Website | 2024-11-07 | 0 | Know the Toxic Duo or They’ll Know you: ToxicPanda and WinOS 4.0 Malware | ||
| Details | Website | 2024-10-24 | 1 | TGR-STA-0043 — Operation Diplomatic Specter | ||
| Details | Website | 2024-09-26 | 1 | 유효한 인증서를 악용한 국내 게임사 대상 공급망 공격 - ASEC | ||
| Details | Website | 2024-09-26 | 1 | Supply Chain Attacks Targeting Korean Game Companies Using Valid Certificates - ASEC | ||
| Details | Website | 2024-09-16 | 27 | KTLVdoor Backdoor IOCs - SEC-1275-1 | ||
| Details | Website | 2024-09-05 | 0 | New KTLVdoor Malware Linked to Chinese Threat Actor Earth Lusca | ||
| Details | Website | 2024-09-05 | 1 | New Cross-Platform Malware KTLVdoor Discovered in Attack on Chinese Trading Firm | ||
| Details | Website | 2024-09-05 | 1 | New Cross-Platform Malware KTLVdoor Discovered in Attack on Chinese Trading Firm - RedPacket Security | ||
| Details | Website | 2024-09-04 | 11 | Reconnaissance Scanning Tools Used by Chinese Threat Actors and Those Available in Open Source | ||
| Details | Website | 2024-09-04 | 3 | Earth Lusca Uses KTLVdoor Backdoor for Multiplatform Intrusion | ||
| Details | Website | 2024-08-16 | 6 | Weekly Cyber Threat Intelligence Summary | ||
| Details | Website | 2024-08-12 | 3 | HyperBro RAT | ||
| Details | Website | 2024-08-12 | 5 | DeadRinger Operation | ||
| Details | Website | 2024-08-08 | 38 | Кампания EastWind распространяет CloudSorcerer и инструменты двух APT | ||
| Details | Website | 2024-06-11 | 5 | Noodle RAT Reviewing the Backdoor Used by Chinese-Speaking Groups | ||
| Details | Website | 2024-06-11 | 6 | Noodle RAT Reviewing the Backdoor Used by Chinese-Speaking Groups | ||
| Details | Website | 2024-05-28 | 54 | High Value Malicious Domains. — Silent Push Threat Intelligence | ||
| Details | Website | 2024-04-22 | 43 | Nazar: A Lost Amulet — The Lost Reports | ||
| Details | Website | 2024-02-08 | 6 | Vertical Target Series: Technology, Telecommunications and Academic and Educational Services | ||
| Details | Website | 2024-01-22 | 93 | Lookout Discovers Surveillance Campaigns Targeting Uyghurs | Threat Intel | ||
| Details | Website | 2024-01-01 | 1 | Spies dressed up as hackers | ||
| Details | Website | 2023-11-13 | 5 | 2023 Sep - Threat Trend Report on APT Groups - ASEC BLOG | ||
| Details | Website | 2023-11-10 | 5 | Risky Biz News: Clop is coming after your SysAid servers | ||
| Details | Website | 2023-10-26 | 3 | Detection Content to Address Attacker Techniques Covered in the “Domain of Thrones: Part I” Research - SOC Prime | ||
| Details | Website | 2023-10-13 | 6 | 2023년 3분기 국가별 해커그룹 동향 보고서 |