mirror of https://github.com/MISP/misp-galaxy
[threat-actors] Add SCARLETEEL
parent
b59b270500
commit
23b95c50d5
|
@ -12823,6 +12823,17 @@
|
||||||
},
|
},
|
||||||
"uuid": "d52a06dd-3ee9-47cf-ad31-b55ca4cbc5cf",
|
"uuid": "d52a06dd-3ee9-47cf-ad31-b55ca4cbc5cf",
|
||||||
"value": "SingularityMD"
|
"value": "SingularityMD"
|
||||||
|
},
|
||||||
|
{
|
||||||
|
"description": "SCARLETEEL is a threat actor that primarily targets cloud environments, specifically AWS and Kubernetes. They have been observed stealing proprietary data and intellectual property, as well as conducting cryptomining operations. SCARLETEEL employs sophisticated tactics and tools to bypass security measures and gain unauthorized access to accounts, often exploiting vulnerabilities in containerized workloads and misconfigurations in AWS policies.",
|
||||||
|
"meta": {
|
||||||
|
"refs": [
|
||||||
|
"https://sysdig.com/blog/scarleteel-2-0/",
|
||||||
|
"https://sysdig.com/blog/cloud-breach-terraform-data-theft/"
|
||||||
|
]
|
||||||
|
},
|
||||||
|
"uuid": "e03a7ecb-b8a1-40c5-b5af-638ee6029374",
|
||||||
|
"value": "SCARLETEEL"
|
||||||
}
|
}
|
||||||
],
|
],
|
||||||
"version": 293
|
"version": 293
|
||||||
|
|
Loading…
Reference in New Issue