More adversaries...

This commit is contained in:
Alexandre Dulaunoy 2016-03-02 08:29:07 +01:00
parent 38c6dba24b
commit 7f8efde101

View file

@ -3,7 +3,7 @@
"description": "Known or estimated adversary groups targeting organizations and employees. Adversary groups are regularly confused with their initial operation or campaign.",
"authors": ["Alexandre Dulaunoy", "Florian Roth", "Thomas Schreck", "Various"],
"type": "Adversary Groups",
"groups" : ["Comment Crew","Putter Panda","Sofacy","APT 29","Turla Group","Energetic Bear","Sandworm","Anunak","TeamSpy Crew","BuhTrap","Putter Panda","UPS","IXESHE","APT 16","Aurora Panda","Wekby","Axiom","Shell Crew","Naikon","Lotus Blossom","Hurricane Panda","Emissary Panda","Stone Panda","Nightshade Panda","Hellsing","Night Dragon","Mirage","Anchor Panda","NetTraveler","Ice Fog","HiddenLynx","Beijing Group","Pirate Panda","Radio Panda","Dagger Panda","Samurai Panda","Impersonating Panda","Violin Panda","Toxic Panda","Temper Panda","Flying Kitten","Viking Jackal","Cutting Kitten","Rebel Jackal","Stalker Panda","Berserk Bear","Dizzy Panda","Predator Panda","Pitty Panda","Wet Panda","Union Panda","Wolf Spider","Boulder Bear","Lotus Panda","Shark Spider","Silent Chollima","Viceroy Tiger","Pizzo Spider","Corsair Jackal"],
"groups" : ["Comment Crew","Putter Panda","Sofacy","APT 29","Turla Group","Energetic Bear","Sandworm","Anunak","TeamSpy Crew","BuhTrap","Putter Panda","UPS","IXESHE","APT 16","Aurora Panda","Wekby","Axiom","Shell Crew","Naikon","Lotus Blossom","Hurricane Panda","Emissary Panda","Stone Panda","Nightshade Panda","Hellsing","Night Dragon","Mirage","Anchor Panda","NetTraveler","Ice Fog","HiddenLynx","Beijing Group","Pirate Panda","Radio Panda","Dagger Panda","Samurai Panda","Impersonating Panda","Violin Panda","Toxic Panda","Temper Panda","Flying Kitten","Viking Jackal","Cutting Kitten","Rebel Jackal","Stalker Panda","Berserk Bear","Dizzy Panda","Predator Panda","Pitty Panda","Wet Panda","Union Panda","Wolf Spider","Boulder Bear","Lotus Panda","Shark Spider","Silent Chollima","Viceroy Tiger","Pizzo Spider","Corsair Jackal","Charming Kitten","Deadeye Jackal"],
"details" : [
{
"group": "Comment Crew",
@ -220,6 +220,11 @@
"country": "IR"
},
{
"group": "Charming Kitten",
"synonyms": ["Newscaster", "Parastoo"],
"country": "IR"
},
{
"group": "Rebel Jackal",
"synonyms": ["FallagaTeam"],
"country": "TN"
@ -234,7 +239,7 @@
"description": "The Sofacy Group (also known as APT28, Pawn Storm, Fancy Bear and Sednit) is a cyber espionage group believed to have ties to the Russian government. Likely operating since 2007, the group is known to target government, military, and security organizations. It has been characterized as an advanced persistent threat.",
"refs": ["https://en.wikipedia.org/wiki/Sofacy_Group"],
"country": "RU",
"synonyms": ["APT 28", "APT28", "Pawn Storm", "Fancy Bear", "Sednit"]
"synonyms": ["APT 28", "APT28", "Pawn Storm", "Fancy Bear", "Sednit", "TsarTeam"]
},
{
"group": "APT 29",
@ -311,6 +316,13 @@
"group": "Corsair Jackal",
"country": "TN",
"synonyms": ["TunisianCyberArmy"]
},
{
"group": "Deadeye Jackal",
"description": "The Syrian Electronic Army (SEA) is a group of computer hackers which first surfaced online in 2011 to support the government of Syrian President Bashar al-Assad. Using spamming, website defacement, malware, phishing, and denial of service attacks, it has targeted political opposition groups, western news organizations, human rights groups and websites that are seemingly neutral to the Syrian conflict. It has also hacked government websites in the Middle East and Europe, as well as US defense contractors. As of 2011 the SEA has been "the first Arab country to have a public Internet Army hosted on its national networks to openly launch cyber attacks on its enemies". The precise nature of SEA's relationship with the Syrian government has changed over time and is unclear",
"refs": ["https://en.wikipedia.org/wiki/Syrian_Electronic_Army"]
"country": "SY",
"synonyms": ["SyrianElectronicArmy", "SEA"]
}
]
}