Cadelle and Chafer groups added

clusters/threat-actor.json

@@ -1219,6 +1219,22 @@
       "meta": {
           "refs": ["https://citizenlab.org/2015/12/packrat-report/"]
         }
+    },
+    {
+      "value": "Cadelle",
+      "description": "Symantec telemetry identified Cadelle and Chafer activity dating from as far back as July 2014, however, it’s likely that activity began well before this date. Command-and-control (C&C) registrant information points to activity possibly as early as 2011, while executable compilation times suggest early 2012. Their attacks continue to the present day. Symantec estimates that each team is made up of between 5 and 10 people.",
+      "meta": {
+          "refs": ["https://www.symantec.com/connect/blogs/iran-based-attackers-use-back-door-threats-spy-middle-eastern-targets"],
+          "country": "IR"
+      }
+    },
+    {
+      "value": "Chafer",
+      "description": "Symantec telemetry identified Cadelle and Chafer activity dating from as far back as July 2014, however, it’s likely that activity began well before this date. Command-and-control (C&C) registrant information points to activity possibly as early as 2011, while executable compilation times suggest early 2012. Their attacks continue to the present day. Symantec estimates that each team is made up of between 5 and 10 people.",
+      "meta": {
+          "refs": ["https://www.symantec.com/connect/blogs/iran-based-attackers-use-back-door-threats-spy-middle-eastern-targets"],
+          "country": "IR"
+     }
     }
   ],
   "name": "Threat actor",
@@ -1233,5 +1249,5 @@
   ],
   "description": "Known or estimated adversary groups targeting organizations and employees. Adversary groups are regularly confused with their initial operation or campaign.",
   "uuid": "7cdff317-a673-4474-84ec-4f1754947823",
-  "version": 7
+  "version": 8
 }