[threat-actors] Add YoroTrooper

This commit is contained in:
Mathieu Beligon 2023-11-03 19:02:12 +01:00
parent 58e8dfef71
commit 0133c023d2

View file

@ -12287,6 +12287,18 @@
}, },
"uuid": "6db3ad41-6b47-43c8-b94b-98853749ee02", "uuid": "6db3ad41-6b47-43c8-b94b-98853749ee02",
"value": "Kasablanka" "value": "Kasablanka"
},
{
"description": "YoroTroopers main targets are government or energy organizations in Azerbaijan, Tajikistan, Kyrgyzstan and other Commonwealth of Independent States, based on Cisco Talos analysis. YoroTrooper was also observed compromising accounts from at least two international organizations: a critical European Union health care agency and the World Intellectual Property Organization. Successful compromises also included Embassies of European countries including Azerbaijan and Turkmenistan.",
"meta": {
"country": "KZ",
"refs": [
"https://blog.talosintelligence.com/attributing-yorotrooper/",
"https://blog.talosintelligence.com/yorotrooper-espionage-campaign-cis-turkey-europe/"
]
},
"uuid": "2031ae01-e962-4861-a224-0934af6cdd3a",
"value": "YoroTrooper"
} }
], ],
"version": 289 "version": 289