From 9e3a998dfc711ec2be5cb48bc9356903e2fcfd24 Mon Sep 17 00:00:00 2001 From: Deborah Servili Date: Tue, 3 Sep 2019 15:51:21 +0200 Subject: [PATCH] aff SectorJ04 group --- clusters/threat-actor.json | 7 ++++++- 1 file changed, 6 insertions(+), 1 deletion(-) diff --git a/clusters/threat-actor.json b/clusters/threat-actor.json index 24eb9ea..30ad8d0 100644 --- a/clusters/threat-actor.json +++ b/clusters/threat-actor.json @@ -7687,7 +7687,12 @@ }, "uuid": "9c124874-042d-48cd-b72b-ccdc51ecbbd6", "value": "APT41" + }, + { + "description": "SectorJ04 is a Russian-based cybercrime group that began operating about five years ago and conducted hacking activities for financial profit using malware such as banking trojans and ransomware against national and industrial sectors located across Europe, North America and West Africa.\nIn 2019, the SectorJ04 group expanded its hacking activities to cover various industrial sectors located across Southeast Asia and East Asia, and is changing the pattern of their attacks from targeted attacks to searching for random victims. This report includes details related to the major hacking targets of the SectorJ04 group in 2019, how those targets were hacked, characteristics of their hacking activities this year and recent cases of the SectorJ04 group’s hacking.", + "uuid": "50e25cfb-8b4d-408d-a7c6-bd0672662d39", + "value": "SectorJ04" } ], - "version": 128 + "version": 129 }