mirror of
https://github.com/MISP/misp-galaxy.git
synced 2024-11-26 16:57:18 +00:00
adding threat actor group LAPSUS$ / DEV-0537.
This commit is contained in:
parent
6f0208dcaf
commit
24a3f16ab4
1 changed files with 16 additions and 1 deletions
|
@ -9036,7 +9036,22 @@
|
||||||
},
|
},
|
||||||
"uuid": "d45dd940-b38d-4b2c-9f2f-3e4a0eac841c",
|
"uuid": "d45dd940-b38d-4b2c-9f2f-3e4a0eac841c",
|
||||||
"value": "MosesStaff"
|
"value": "MosesStaff"
|
||||||
|
},
|
||||||
|
{
|
||||||
|
"description": "An actor group conducting large-scale social engineering and extortion campaign against multiple organizations with some seeing evidence of destructive elements.",
|
||||||
|
"meta": {
|
||||||
|
"refs": [
|
||||||
|
"https://www.microsoft.com/security/blog/2022/03/22/dev-0537-criminal-actor-targeting-organizations-for-data-exfiltration-and-destruction/",
|
||||||
|
"https://blog.checkpoint.com/2022/03/07/lapsus-ransomware-gang-uses-stolen-source-code-to-disguise-malware-files-as-trustworthy-check-point-customers-remain-protected/"
|
||||||
|
],
|
||||||
|
"synonyms": [
|
||||||
|
"LAPSUS$",
|
||||||
|
"DEV-0537"
|
||||||
|
]
|
||||||
|
},
|
||||||
|
"uuid": "d9e5be22-1a04-4956-af6c-37af02330980",
|
||||||
|
"value": "LAPSUS"
|
||||||
}
|
}
|
||||||
],
|
],
|
||||||
"version": 214
|
"version": 215
|
||||||
}
|
}
|
||||||
|
|
Loading…
Reference in a new issue