mirror of
https://github.com/MISP/misp-galaxy.git
synced 2024-11-30 02:37:17 +00:00
[threat-actors] Add Blacktail
This commit is contained in:
parent
c2a712d0d4
commit
f066061f4b
1 changed files with 13 additions and 0 deletions
|
@ -13513,6 +13513,19 @@
|
||||||
},
|
},
|
||||||
"uuid": "55bcc595-2442-4f98-9477-7fe9b507607c",
|
"uuid": "55bcc595-2442-4f98-9477-7fe9b507607c",
|
||||||
"value": "SilverFish"
|
"value": "SilverFish"
|
||||||
|
},
|
||||||
|
{
|
||||||
|
"description": "Blacktail is a cybercrime group that has gained attention for its ransomware campaigns, particularly the Buhti ransomware. They are known for using custom-built data exfiltration tools and have been observed exploiting vulnerabilities in both Windows and Linux systems.",
|
||||||
|
"meta": {
|
||||||
|
"refs": [
|
||||||
|
"https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/buhti-ransomware",
|
||||||
|
"https://fortiguard.fortinet.com/threat-signal-report/5170",
|
||||||
|
"https://www.redpacketsecurity.com/new-buhti-ransomware-gang-uses-leaked-windows-linux-encryptors/",
|
||||||
|
"https://www.redpacketsecurity.com/buhti-ransomware-gang-switches-tactics-utilizes-leaked-lockbit-and-babuk-code/"
|
||||||
|
]
|
||||||
|
},
|
||||||
|
"uuid": "e06e1bcd-7da2-4732-934a-9fa1efa427ad",
|
||||||
|
"value": "Blacktail"
|
||||||
}
|
}
|
||||||
],
|
],
|
||||||
"version": 295
|
"version": 295
|
||||||
|
|
Loading…
Reference in a new issue