MISP/misp-galaxy
6
0
Fork 0
mirror of https://github.com/MISP/misp-galaxy.git synced 2024-11-26 08:47:18 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Merge branch 'main' into threat-actors/fix-naikon-cluster

Browse source
This commit is contained in:
Mathieu Beligon 2022-08-18 09:01:36 -07:00
commit 5e4a4c3453
1 changed files with 11 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

12
clusters/threat-actor.json
View file

@ -9850,7 +9850,17 @@
}, },
"uuid": "8d73715a-8bbd-4eaa-ae24-2f1b1c84cf21", "uuid": "8d73715a-8bbd-4eaa-ae24-2f1b1c84cf21",
"value": "Goblin Panda" "value": "Goblin Panda"
},
{
"description": "Since 2018, security researchers tracked a financially-motivated cybercrime actor, TA558, targeting hospitality, travel, and related industries located in Latin America and sometimes North America, and western Europe. The actor sends malicious emails written in Portuguese, Spanish, and sometimes English. The emails use reservation-themed lures with business-relevant themes such as hotel room bookings. The emails may contain malicious attachments or URLs aiming to distribute one of at least 15 different malware payloads.",
"meta": {
"sources": [
"https://www.proofpoint.com/us/blog/threat-insight/reservations-requested-ta558-targets-hospitality-and-travel"
]
},
"uuid": "e1e70539-8916-45c2-9b01-891c1c5bd8a1",
"value": "TA558"
} }
], ],
"version": 241 "version": 242
} }