MISP/misp-galaxy
6
0
Fork 0
mirror of https://github.com/MISP/misp-galaxy.git synced 2024-11-22 14:57:18 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

chg: [threat actors] added Volt Typhoon

Browse source
This commit is contained in:
iglocska 2023-05-25 07:29:48 +02:00
parent 8c1bb1f809
commit 14301a9c4c
No known key found for this signature in database
GPG key ID: BEA224F1FEF113AC
1 changed files with 16 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

17
clusters/threat-actor.json
View file

@ -11337,7 +11337,22 @@
},
"uuid": "aac49b4e-74e9-49fa-84f9-e340cf8bafbc",
"value": "APT43"
},
{
"description": "[Microsoft] Volt Typhoon, a state-sponsored actor based in China that typically focuses on espionage and information gathering. Microsoft assesses with moderate confidence that this Volt Typhoon campaign is pursuing development of capabilities that could disrupt critical communications infrastructure between the United States and Asia region during future crises.\n\n[Secureworks] BRONZE SILHOUETTE likely operates on behalf the PRC. The targeting of U.S. government and defense organizations for intelligence gain aligns with PRC requirements, and the tradecraft observed in these engagements overlap with other state-sponsored Chinese threat groups.",
"meta": {
"country": "CN",
"refs": [
"https://www.secureworks.com/blog/chinese-cyberespionage-group-bronze-silhouette-targets-us-government-and-defense-organizations",
"https://www.microsoft.com/en-us/security/blog/2023/05/24/volt-typhoon-targets-us-critical-infrastructure-with-living-off-the-land-techniques/"
],
"synonyms": [
"BRONZE SILHOUETTE"
]
},
"uuid": "f02679fa-5e85-4050-8eb5-c2677d93306f",
"value": "Volt Typhoon"
}
],
"version": 273
"version": 274
}