mirror of
https://github.com/MISP/misp-galaxy.git
synced 2024-11-22 23:07:19 +00:00
chg: [threat-actor] Evil Eye and POISON CARP
Ref: https://citizenlab.ca/2019/09/poison-carp-tibetan-groups-targeted-with-1-click-mobile-exploits/ Signed-off: Jean-Louis during training session
This commit is contained in:
parent
adab9a42fd
commit
a5ae130916
1 changed files with 15 additions and 1 deletions
|
@ -7719,7 +7719,21 @@
|
||||||
},
|
},
|
||||||
"uuid": "5f108484-db7f-11e9-aaa4-fb0176425734",
|
"uuid": "5f108484-db7f-11e9-aaa4-fb0176425734",
|
||||||
"value": "Tortoiseshell"
|
"value": "Tortoiseshell"
|
||||||
|
},
|
||||||
|
{
|
||||||
|
"description": "Between November 2018 and May 2019, senior members of Tibetan groups received malicious links in individually tailored WhatsApp text exchanges with operators posing as NGO workers, journalists, and other fake personas. The links led to code designed to exploit web browser vulnerabilities to install spyware on iOS and Android devices, and in some cases to OAuth phishing pages. This campaign was carried out by what appears to be a single operator that we call POISON CARP.",
|
||||||
|
"meta": {
|
||||||
|
"refs": [
|
||||||
|
"https://citizenlab.ca/2019/09/poison-carp-tibetan-groups-targeted-with-1-click-mobile-exploits/",
|
||||||
|
"https://www.volexity.com/blog/2019/09/02/digital-crackdown-large-scale-surveillance-and-exploitation-of-uyghurs/"
|
||||||
|
],
|
||||||
|
"synonyms": [
|
||||||
|
"Evil Eye"
|
||||||
|
]
|
||||||
|
},
|
||||||
|
"uuid": "7aa99279-4255-4d26-bb95-12e7156555a0",
|
||||||
|
"value": "POISON CARP"
|
||||||
}
|
}
|
||||||
],
|
],
|
||||||
"version": 133
|
"version": 134
|
||||||
}
|
}
|
||||||
|
|
Loading…
Reference in a new issue