From 3cc3cc461ae77e5a5286f2defa19198b0d2dc663 Mon Sep 17 00:00:00 2001 From: StefanKelm Date: Fri, 11 Sep 2020 11:38:06 +0200 Subject: [PATCH] Update threat-actor.json STRONTIUM --- clusters/threat-actor.json | 15 ++++++++------- 1 file changed, 8 insertions(+), 7 deletions(-) diff --git a/clusters/threat-actor.json b/clusters/threat-actor.json index dd2d3ff..b3f0f38 100644 --- a/clusters/threat-actor.json +++ b/clusters/threat-actor.json @@ -2355,7 +2355,7 @@ "https://www.apnews.com/4d174e45ef5843a0ba82e804f080988f", "https://www.voanews.com/a/iaaf-hack-fancy-bears/3793874.html", "https://securelist.com/a-slice-of-2017-sofacy-activity/83930/", - "http://www.dw.com/en/hackers-lurking-parliamentarians-told/a-19564630", + "https://www.dw.com/en/hackers-lurking-parliamentarians-told/a-19564630", "https://unit42.paloaltonetworks.com/unit42-sofacys-komplex-os-x-trojan/", "https://unit42.paloaltonetworks.com/dear-joohn-sofacy-groups-global-campaign/", "https://www.fireeye.com/blog/threat-research/2015/04/probable_apt28_useo.html", @@ -2375,13 +2375,13 @@ "https://unit42.paloaltonetworks.com/unit42-sofacy-continues-global-attacks-wheels-new-cannon-trojan/", "https://www.bleepingcomputer.com/news/security/apt28-uses-lojax-first-uefi-rootkit-seen-in-the-wild/", "https://blog.trendmicro.com/trendlabs-security-intelligence/pawn-storm-targets-mh17-investigation-team/", - "http://researchcenter.paloaltonetworks.com/2016/06/unit42-new-sofacy-attacks-against-us-government-agency/", - "http://www.trendmicro.com/cloud-content/us/pdfs/security-intelligence/white-papers/wp-operation-pawn-storm.pdf", + "https://researchcenter.paloaltonetworks.com/2016/06/unit42-new-sofacy-attacks-against-us-government-agency/", + "https://www.trendmicro.com/cloud-content/us/pdfs/security-intelligence/white-papers/wp-operation-pawn-storm.pdf", "https://blog.trendmicro.com/trendlabs-security-intelligence/new-adobe-flash-zero-day-used-in-pawn-storm-campaign/", "https://blogs.microsoft.com/on-the-issues/2018/08/20/we-are-taking-new-steps-against-broadening-threats-to-democracy/", - "http://www.lse.co.uk/AllNews.asp?code=kwdwehme&headline=Russian_Hackers_Suspected_In_Cyberattack_On_German_Parliament", + "https://www.lse.co.uk/AllNews.asp?code=kwdwehme&headline=Russian_Hackers_Suspected_In_Cyberattack_On_German_Parliament", "https://www.volkskrant.nl/cultuur-media/russen-faalden-bij-hackpogingen-ambtenaren-op-nederlandse-ministeries~b77ff391/", - "http://www.ibtimes.co.uk/russian-hackers-fancy-bear-likely-breached-olympic-drug-testing-agency-dnc-experts-say-1577508", + "https://www.ibtimes.co.uk/russian-hackers-fancy-bear-likely-breached-olympic-drug-testing-agency-dnc-experts-say-1577508", "https://www.bleepingcomputer.com/news/security/microsoft-disrupts-apt28-hacking-campaign-aimed-at-us-midterm-elections/", "https://www.justice.gov/opa/pr/justice-department-announces-actions-disrupt-advanced-persistent-threat-28-botnet-infected", "https://www.accenture.com/t20181129T203820Z__w__/us-en/_acnmedia/PDF-90/Accenture-snakemackerel-delivers-zekapab-malware.pdf", @@ -2391,7 +2391,8 @@ "https://www.washingtonpost.com/technology/2019/02/20/microsoft-says-it-has-found-another-russian-operation-targeting-prominent-think-tanks/?utm_term=.870ff11468ae", "https://www.handelsblatt.com/today/politics/election-risks-russia-linked-hackers-target-german-political-foundations/23569188.html?ticket=ST-2696734-GRHgtQukDIEXeSOwksXO-ap1", "https://www.accenture.com/t20190213T141124Z__w__/us-en/_acnmedia/PDF-94/Accenture-SNAKEMACKEREL-Threat-Campaign-Likely-Targeting-NATO-Members-Defense-and-Military-Outlets.pdf", - "https://marcoramilli.com/2019/12/05/apt28-attacks-evolution/" + "https://marcoramilli.com/2019/12/05/apt28-attacks-evolution/", + "https://www.microsoft.com/security/blog/2020/09/10/strontium-detecting-new-patters-credential-harvesting/" ], "synonyms": [ "APT 28", @@ -8339,5 +8340,5 @@ "value": "GALLIUM" } ], - "version": 175 + "version": 176 }