From 5347bcb95cb90b2f4f2f386f39dbabf183af44cd Mon Sep 17 00:00:00 2001
From: Mathieu4141 <mathieu@feedly.com>
Date: Mon, 24 Jun 2024 02:35:58 -0700
Subject: [PATCH] [threat-actors] Add ALTDOS

---
 clusters/threat-actor.json | 15 +++++++++++++++
 1 file changed, 15 insertions(+)

diff --git a/clusters/threat-actor.json b/clusters/threat-actor.json
index f47c372..8060241 100644
--- a/clusters/threat-actor.json
+++ b/clusters/threat-actor.json
@@ -16241,6 +16241,21 @@
       },
       "uuid": "cdf4506e-09ea-4eb8-b898-b1b5381aa343",
       "value": "SneakyChef"
+    },
+    {
+      "description": "ALTDOS is a threat actor group that has targeted entities in Southeast Asia, including Singapore, Thailand, and Malaysia. They have been involved in data breaches of companies in various sectors, such as real estate and retail, compromising sensitive information like customer names, bank account numbers, and transaction details. ALTDOS uses tactics like ransomware attacks, data exfiltration, and dumping data publicly or for sale on underground forums. The group has been known to demand ransom payments from victims, but also leaks data if demands are not met.",
+      "meta": {
+        "refs": [
+          "https://www.databreaches.net/singapore-corporations-making-progress-in-preventing-cyberattacks/",
+          "https://www.databreaches.net/altdos-claims-to-have-hacked-one-of-malaysias-biggest-conglomerates/",
+          "https://www.databreaches.net/advisories-are-published-but-are-enough-entities-reading-them-and-taking-precautions/",
+          "https://www.databreaches.net/singapore-real-estate-firm-breached-by-altdos/",
+          "https://www.databreaches.net/sg-vhive-alerts-consumers-to-cyberattack/",
+          "https://www.databreaches.net/sg-vhive-attackers-escalate-take-control-of-furniture-retailers-email-server/"
+        ]
+      },
+      "uuid": "2bd6c045-2ec2-438e-af66-0d97a0163290",
+      "value": "ALTDOS"
     }
   ],
   "version": 312