Common Information
| Type | Value |
|---|---|
| Value |
APT17 - G0025 |
| Category | Actor |
| Type | Mitre-Pre-Attack-Intrusion-Set |
| Misp Type | Cluster |
| Description | APT17 is a China-based threat group that has conducted network intrusions against U.S. government entities, the defense industry, law firms, information technology companies, mining companies, and non-government organizations. (Citation: FireEye APT17) |
| Details | Published | Attributes | CTI | Title | ||
|---|---|---|---|---|---|---|
| Details | Website | 2024-10-02 | 6 | Chinese Threat Groups That Use Ransomware and Ransomware Groups That Use Chinese Names | ||
| Details | Website | 2023-09-21 | 2 | What's New in Intezer's FREE Community Edition | ||
| Details | Website | 2023-06-14 | 9 | What Are Today’s Top Cyber Weapons? | ||
| Details | Website | 2023-05-25 | 5 | Guarding the Gates: An Exploration of the Top 10 Supply Chain Attacks | ||
| Details | Website | 2023-05-19 | 3 | Researchers Identify Second Developer of ‘Golden Chickens’ Malware | ||
| Details | Website | 2023-05-17 | 2 | Sophisticated Merdoor backdoor long used in Lancefly APT attacks | ||
| Details | Website | 2023-05-17 | 7 | Lancefly APT Hackers Using Custom Backdoor to Attack Government Orgs | ||
| Details | Website | 2023-05-16 | 7 | Stealthy MerDoor malware uncovered after five years of attacks - RedPacket Security | ||
| Details | Website | 2023-05-16 | 5 | New APT targets South and Southeast Asia with custom-written backdoor | ||
| Details | Website | 2023-05-15 | 3 | Researchers Uncover Powerful Backdoor and Custom Implant in Year-Long Cyber Campaign | ||
| Details | Website | 2023-05-15 | 3 | Researchers Uncover Powerful Backdoor and Custom Implant in Year-Long Cyber Campaign - RedPacket Security | ||
| Details | Website | 2023-05-15 | 7 | Stealthy MerDoor malware uncovered after five years of attacks | ||
| Details | Website | 2023-05-15 | 148 | Lancefly: Group Uses Custom Backdoor to Target Orgs in Government, Aviation, Other Sectors | ||
| Details | Website | 2023-01-17 | 12 | Gone Phishing: Hunting for Malicious Industrial-Themed Emails to Prevent Operational Technology Compromises | Mandiant | ||
| Details | Website | 2022-12-07 | 1 | Is Avast Safe to Use in 2023? | ||
| Details | Website | 2022-11-17 | 19 | Fielding Threats: Cyber, Influence, and Physical Threats to the 2022 FIFA World Cup in Qatar | ||
| Details | Website | 2022-11-14 | 4 | New "Earth Longzhi" APT Targets Ukraine and Asian Countries with Custom Cobalt Strike Loaders | ||
| Details | Website | 2022-10-26 | 4 | Pro-PRC DRAGONBRIDGE Influence Campaign Leverages New TTPs to Aggressively Target U.S. Interests, Including Midterm Elections | Mandiant | ||
| Details | Website | 2022-09-15 | 5 | Webworm Hackers Using Modified RATs in Latest Cyber Espionage Attacks | ||
| Details | Website | 2022-07-24 | 2 | Chinese APTs: Interlinked networks and side hustles | ||
| Details | Website | 2021-04-20 | 4 | Chinese Cyber Operations Groups | ||
| Details | Website | 2020-06-09 | 18 | Looking at Big Threats Using Code Similarity – part 1 | ||
| Details | Website | 2020-04-20 | 39 | WINNTI GROUP: Insights From the Past | ||
| Details | Website | 2020-04-06 | 19 | 정상 인증서에 숨은 섀도 포스, 7년간의 행적 드러나 | ||
| Details | Website | 2020-01-17 | 4 | First Patch Tuesday Update; Pwn2Own Vancouver Date |