alias Callisto -> BlueCharlie

not sure, if you also want to have the Microsoft names in here (I think they are tracked separately?), otherwise, that would be Star Blizzard according to the article.
This commit is contained in:
Daniel Plohmann 2023-08-03 09:53:10 +02:00 committed by GitHub
parent dc29d5875e
commit e228ffc432
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23

View file

@ -4478,13 +4478,15 @@
"https://blog.google/threat-analysis-group/continued-cyber-activity-in-eastern-europe-observed-by-tag", "https://blog.google/threat-analysis-group/continued-cyber-activity-in-eastern-europe-observed-by-tag",
"https://www.microsoft.com/security/blog/2022/08/15/disrupting-seaborgiums-ongoing-phishing-operations", "https://www.microsoft.com/security/blog/2022/08/15/disrupting-seaborgiums-ongoing-phishing-operations",
"https://blog.sekoia.io/calisto-continues-its-credential-harvesting-campaign", "https://blog.sekoia.io/calisto-continues-its-credential-harvesting-campaign",
"https://services.google.com/fh/files/blogs/google_fog_of_war_research_report.pdf" "https://services.google.com/fh/files/blogs/google_fog_of_war_research_report.pdf",
"https://www.darkreading.com/attacks-breaches/russian-apt-bluecharlie-swaps-infrastructure-to-evade-detection"
], ],
"synonyms": [ "synonyms": [
"COLDRIVER", "COLDRIVER",
"SEABORGIUM", "SEABORGIUM",
"TA446", "TA446",
"GOSSAMER BEAR" "GOSSAMER BEAR",
"BlueCharlie"
] ]
}, },
"related": [ "related": [