mirror of
https://github.com/MISP/misp-galaxy.git
synced 2024-11-22 23:07:19 +00:00
adding MoustachedBouncer
This commit is contained in:
parent
734823676f
commit
c1d3164ef6
1 changed files with 24 additions and 1 deletions
|
@ -11462,7 +11462,30 @@
|
||||||
},
|
},
|
||||||
"uuid": "77742419-aa71-4bc2-94c6-29c394b350e7",
|
"uuid": "77742419-aa71-4bc2-94c6-29c394b350e7",
|
||||||
"value": "Worok"
|
"value": "Worok"
|
||||||
|
},
|
||||||
|
{
|
||||||
|
"description": "MoustachedBouncer is a cyberespionage group discovered by ESET Research and first publicly disclosed in August 2023. The group has been active since at least 2014 and only targets foreign embassies in Belarus. Since 2020, MoustachedBouncer has most likely been able to perform adversary-in-the-middle (AitM) attacks at the ISP level, within Belarus, in order to compromise its targets. The group uses two separate toolsets that we have named NightClub and Disco.",
|
||||||
|
"meta": {
|
||||||
|
"attribution-confidence": "50",
|
||||||
|
"cfr-suspected-state-sponsor": "Belarus",
|
||||||
|
"cfr-suspected-victims": [
|
||||||
|
"Europe",
|
||||||
|
"Eastern Europe",
|
||||||
|
"South Asia",
|
||||||
|
"Northeast Africa"
|
||||||
|
],
|
||||||
|
"cfr-target-category": [
|
||||||
|
"Government"
|
||||||
|
],
|
||||||
|
"cfr-type-of-incident": "Espionage",
|
||||||
|
"country": "BY",
|
||||||
|
"refs": [
|
||||||
|
"https://www.welivesecurity.com/en/eset-research/moustachedbouncer-espionage-against-foreign-diplomats-in-belarus/"
|
||||||
|
]
|
||||||
|
},
|
||||||
|
"uuid": "01ac8b25-492e-444b-891b-968f2694e7b2",
|
||||||
|
"value": "MoustachedBouncer"
|
||||||
}
|
}
|
||||||
],
|
],
|
||||||
"version": 276
|
"version": 277
|
||||||
}
|
}
|
||||||
|
|
Loading…
Reference in a new issue