Volt Typhoon Attacking U.S. Critical Infrastructure To Maintain Persistent Access
Tags
attack-pattern: Data Botnet - T1583.005 Botnet - T1584.005 Credentials - T1589.001 Exploits - T1587.004 Exploits - T1588.005 Malware - T1587.001 Malware - T1588.001 Software - T1592.002 Vulnerabilities - T1588.006 Connection Proxy - T1090 Credential Dumping - T1003 Default Credentials
Show in Graph
Common Information
Type Value
UUID 3e572e51-3a16-4168-bb5c-9eadade185f6
Fingerprint b038a503d5b1d75d
Analysis status DONE
Considered CTI value 2
Text language
Published Nov. 20, 2024, 1:46 p.m.
Added to db Nov. 20, 2024, 3:37 p.m.
Last updated Nov. 21, 2024, 4:24 a.m.
Headline Volt Typhoon Attacking U.S. Critical Infra To Maintain Persistent Access
Title Volt Typhoon Attacking U.S. Critical Infrastructure To Maintain Persistent Access
Detected Hints/Tags/Attributes 41/1/8
Source URLs
Redirection Url
Details Source https://gbhackers.com/volt-typhoon-critical-attack/
URL Provider
Details Provider Source level domain
Details gbhackers.com gbhackers.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 125 GBHackers Security | #1 Globally Trusted Cyber Security News Platform https://gbhackers.com/feed/ 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 7 
cve-2021-27860
Details CVE 69 
cve-2021-40539
Details CVE 92 
cve-2022-42475
Details CVE 111 
cve-2023-27997
Details CVE 29 
cve-2024-39717
Details Domain 933 
any.run
Details Mandiant Uncategorized Groups 7 
UNC3236
Details Deprecated Microsoft Threat Actor Naming Taxonomy (Groups in development) 4 
DEV-0391