Update threat-actor.json

XDSpy
This commit is contained in:
StefanKelm 2020-10-06 12:45:43 +02:00 committed by GitHub
parent cfd52fce8d
commit 1d05f17507
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23

View file

@ -8390,7 +8390,19 @@
}, },
"uuid": "bfb0bc20-5bdf-47ff-b07f-dbd9a3cb9772", "uuid": "bfb0bc20-5bdf-47ff-b07f-dbd9a3cb9772",
"value": "Fox Kitten" "value": "Fox Kitten"
},
{
"description": "Rare is the APT group that goes largely undetected for nine years, but XDSpy is just that; a previously undocumented espionage group that has been active since 2011. It has attracted very little public attention, with the exception of an advisory from the Belarusian CERT in February 2020. In the interim, the group has compromised many government agencies and private companies in Eastern Europe and the Balkans.",
"meta": {
"refs": [
"https://www.welivesecurity.com/2020/10/02/xdspy-stealing-government-secrets-since-2011/",
"https://vblocalhost.com/uploads/VB2020-Faou-Labelle.pdf",
"https://github.com/eset/malware-ioc/tree/master/xdspy/"
]
},
"uuid": "b205584e-db93-433a-b97a-7f2e19d8c188",
"value": "XDSpy"
} }
], ],
"version": 182 "version": 183
} }