From d8ee3beada0c81477ac3c7368425fac331c0c08a Mon Sep 17 00:00:00 2001
From: Mathieu4141 <mathieu@feedly.com>
Date: Mon, 9 Sep 2024 08:18:22 -0700
Subject: [PATCH] [threat-actors] Add SILKFIN AGENCY

---
 clusters/threat-actor.json | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/clusters/threat-actor.json b/clusters/threat-actor.json
index 7842eb3..e43c795 100644
--- a/clusters/threat-actor.json
+++ b/clusters/threat-actor.json
@@ -16569,6 +16569,18 @@
       },
       "uuid": "e40cf515-f155-46d4-b174-88b38383f9bb",
       "value": "UNC2970"
+    },
+    {
+      "description": "SILKFIN AGENCY has claimed responsibility for multiple significant data breaches, including the compromise of DimeCuba.com, which exposed over 1 million SMS records and more than 100,000 email records. They also targeted the Sri Lankan Department of Agrarian Development, allegedly compromising the personal and agricultural data of over 1.45 million farmers. Additionally, they claimed a breach of the Siam Cement Group's database. The breaches involved sensitive data such as NIC numbers and transaction details.",
+      "meta": {
+        "refs": [
+          "https://dailydarkweb.net/threat-actor-claims-breach-of-siam-cement-group-database/",
+          "https://dailydarkweb.net/threat-actor-claimed-to-breach-database-of-dimecuba/",
+          "https://dailydarkweb.net/a-threat-actor-alleged-breach-of-sri-lankan-farmers-community-database/"
+        ]
+      },
+      "uuid": "b1fd5c1a-f0e9-42b1-b386-9925c02ba508",
+      "value": "SILKFIN AGENCY"
     }
   ],
   "version": 313