Added Bahamut to threat actors list

2024-11-22 23:07:19 +00:00 · 2018-09-18 11:27:32 +02:00 · 2018-09-18 11:27:32 +02:00 · f0383758fc
commit f0383758fc
parent 88c9d8d9f6
1 changed files with 11 additions and 0 deletions
--- a/clusters/threat-actor.json
+++ b/clusters/threat-actor.json
@ -5724,6 +5724,17 @@
        ]
      },
      "uuid": "abd89986-b1b0-11e8-b857-efe290264006"
+    },
+    {
+      "value": "Bahamut",
+      "description": "Bahamut is a threat actor primarily operating in Middle East and Central Asia, suspected to be a private contractor to several state sponsored actors. They were observed conduct phishing as well as desktop and mobile malware campaigns.",
+      "meta": {
+        "refs": [
+          "https://www.bellingcat.com/news/mena/2017/06/12/bahamut-pursuing-cyber-espionage-actor-middle-east/",
+          "https://www.bellingcat.com/resources/case-studies/2017/10/27/bahamut-revisited-cyber-espionage-middle-east-south-asia/"
+        ]
+      },
+      "uuid": "dc3edacc-bb24-11e8-81fb-8c16458922a7"
    }
  ],
  "version": 57