Merge pull request #680 from richardweiss80/antlion

added antlion APT group
This commit is contained in:
Alexandre Dulaunoy 2022-02-05 14:08:18 +01:00 committed by GitHub
commit 3bce478fe4
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23

View file

@ -8911,7 +8911,24 @@
}, },
"uuid": "676c1129-5664-4698-92ee-031f81baefce", "uuid": "676c1129-5664-4698-92ee-031f81baefce",
"value": "AQUATIC PANDA" "value": "AQUATIC PANDA"
},
{
"description": "Antlion is a Chinese state-backed advanced persistent threat (APT) group, who has been targeting financial institutions in Taiwan. This persistent campaign has lasted over the course of at least 18 months.",
"meta": {
"cfr-suspected-victims": [
"Taiwan"
],
"cfr-target-category": [
"Financial"
],
"country": "CN",
"refs": [
"https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/china-apt-antlion-taiwan-financial-attacks"
]
},
"uuid": "8482f350-867c-11ec-a8a3-0242ac120002",
"value": "Antlion"
} }
], ],
"version": 210 "version": 211
} }