mirror of
https://github.com/MISP/misp-galaxy.git
synced 2024-11-22 23:07:19 +00:00
[threat-actors] Add GALLIUM aliases
This commit is contained in:
parent
c81b10b3f5
commit
05cf259436
1 changed files with 5 additions and 2 deletions
|
@ -9061,15 +9061,18 @@
|
||||||
{
|
{
|
||||||
"description": "GALLIUM, is a threat actor believed to be targeting telecommunication providers over the world, mostly South-East Asia, Europe and Africa. To compromise targeted networks, GALLIUM target unpatched internet-facing services using publicly available exploits and have been known to target vulnerabilities in WildFly/JBoss.",
|
"description": "GALLIUM, is a threat actor believed to be targeting telecommunication providers over the world, mostly South-East Asia, Europe and Africa. To compromise targeted networks, GALLIUM target unpatched internet-facing services using publicly available exploits and have been known to target vulnerabilities in WildFly/JBoss.",
|
||||||
"meta": {
|
"meta": {
|
||||||
|
"country": "CN",
|
||||||
"refs": [
|
"refs": [
|
||||||
"https://www.microsoft.com/security/blog/2019/12/12/gallium-targeting-global-telecom/",
|
"https://www.microsoft.com/security/blog/2019/12/12/gallium-targeting-global-telecom/",
|
||||||
"https://www.youtube.com/watch?v=fBFm2fiEPTg",
|
"https://www.youtube.com/watch?v=fBFm2fiEPTg",
|
||||||
"https://troopers.de/troopers22/talks/7cv8pz/",
|
"https://troopers.de/troopers22/talks/7cv8pz/",
|
||||||
"https://unit42.paloaltonetworks.com/atoms/alloytaurus/"
|
"https://unit42.paloaltonetworks.com/atoms/alloytaurus/",
|
||||||
|
"https://unit42.paloaltonetworks.com/alloy-taurus-targets-se-asian-government/"
|
||||||
],
|
],
|
||||||
"synonyms": [
|
"synonyms": [
|
||||||
"Red Dev 4",
|
"Red Dev 4",
|
||||||
"Alloy Taurus"
|
"Alloy Taurus",
|
||||||
|
"Granite Typhoon"
|
||||||
]
|
]
|
||||||
},
|
},
|
||||||
"related": [
|
"related": [
|
||||||
|
|
Loading…
Reference in a new issue