MISP/misp-galaxy
6
0
Fork 0
mirror of https://github.com/MISP/misp-galaxy.git synced 2024-11-26 08:47:18 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

chg: [threat-actor] Calypso group added

Browse source 
Ref: https://www.ptsecurity.com/upload/corporate/ru-ru/analytics/calypso-apt-2019-rus.pdf
MISP UUID: 5ca4718b-7f38-4822-83b7-0a1a0a00b412
This commit is contained in:
Alexandre Dulaunoy 2019-11-11 13:34:54 +01:00
parent 8244d5ce62
commit 871d90cfc2
Signed by: adulau
GPG key ID: 09E2CD4944E6CBCD
1 changed files with 15 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

16
clusters/threat-actor.json
View file

@ -7778,7 +7778,21 @@
}, },
"uuid": "75db4269-924b-4771-8f62-0de600a43634", "uuid": "75db4269-924b-4771-8f62-0de600a43634",
"value": "Operation WizardOpium" "value": "Operation WizardOpium"
},
{
"description": "For the first time, the activity of the Calypso group was detected by specialists of PT Expert Security Center in March 2019, during the work to detect cyber threats. As a result, many malware samples of this group were obtained, affected organizations and control servers of intruders were identified. According to our data, the group has been active since at least September 2016. The main goal of the group is to steal confidential data, the main victims are government agencies from Brazil, India, Kazakhstan, Russia, Thailand, Turkey. Our data suggest that the group has Asian roots. Description translated from Russian.",
"value": "Calypso group",
"uuid": "200d04c8-a11f-45c4-86fd-35bb5de3f7a3",
"meta": {
"refs": [
"https://www.ptsecurity.com/upload/corporate/ru-ru/analytics/calypso-apt-2019-rus.pdf"
],
"synonyms": [
"Calypso",
"Calypso APT"
]
}
} }
], ],
"version": 139 "version": 140
} }