MISP
/
misp-galaxy
mirror of https://github.com/MISP/misp-galaxy
2
0
Fork 0
Code Issues Releases Wiki Activity

adding threat actor group LAPSUS$ / DEV-0537.

pull/693/head
Daniel Plohmann 2022-03-23 09:47:10 +01:00 committed by GitHub
parent 6f0208dcaf
commit 24a3f16ab4
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 16 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

17
clusters/threat-actor.json
View File

@ -9036,7 +9036,22 @@
}, },
"uuid": "d45dd940-b38d-4b2c-9f2f-3e4a0eac841c", "uuid": "d45dd940-b38d-4b2c-9f2f-3e4a0eac841c",
"value": "MosesStaff" "value": "MosesStaff"
},
{
"description": "An actor group conducting large-scale social engineering and extortion campaign against multiple organizations with some seeing evidence of destructive elements.",
"meta": {
"refs": [
"https://www.microsoft.com/security/blog/2022/03/22/dev-0537-criminal-actor-targeting-organizations-for-data-exfiltration-and-destruction/",
"https://blog.checkpoint.com/2022/03/07/lapsus-ransomware-gang-uses-stolen-source-code-to-disguise-malware-files-as-trustworthy-check-point-customers-remain-protected/"
],
"synonyms": [
"LAPSUS$",
"DEV-0537"
]
},
"uuid": "d9e5be22-1a04-4956-af6c-37af02330980",
"value": "LAPSUS"
} }
], ],
"version": 214 "version": 215
} }