From 38b8bac51debf45f716f0b858375d32b7fd2d266 Mon Sep 17 00:00:00 2001
From: Daniel Plohmann <daniel.plohmann@mailbox.org>
Date: Tue, 4 May 2021 20:15:17 +0200
Subject: [PATCH] fixing broken/dead links

---
 clusters/threat-actor.json | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/clusters/threat-actor.json b/clusters/threat-actor.json
index 25088e6..0047391 100644
--- a/clusters/threat-actor.json
+++ b/clusters/threat-actor.json
@@ -1217,7 +1217,7 @@
           "https://www.cfr.org/interactive/cyber-operations/mirage",
           "https://www.fireeye.com/content/dam/fireeye-www/global/en/current-threats/pdfs/wp-operation-ke3chang.pdf",
           "https://unit42.paloaltonetworks.com/operation-ke3chang-resurfaces-with-new-tidepool-malware/",
-          "https://www.nccgroup.trust/uk/about-us/newsroom-and-events/blogs/2018/march/apt15-is-alive-and-strong-an-analysis-of-royalcli-and-royaldns/",
+          "https://research.nccgroup.com/2018/03/10/apt15-is-alive-and-strong-an-analysis-of-royalcli-and-royaldns/",
           "https://www.intezer.com/miragefox-apt15-resurfaces-with-new-tools-based-on-old-ones/",
           "https://attack.mitre.org/groups/G0004/",
           "https://www.secureworks.com/research/threat-profiles/bronze-palace"
@@ -4778,7 +4778,7 @@
         "cfr-type-of-incident": "Espionage",
         "country": "CN",
         "refs": [
-          "https://wikileaks.org/vault7/document/2015-08-20150814-256-CSIR-15005-Stalker-Panda/2015-08-20150814-256-CSIR-15005-Stalker-Panda.  pdf",
+          "https://wikileaks.org/vault7/document/2015-08-20150814-256-CSIR-15005-Stalker-Panda/2015-08-20150814-256-CSIR-15005-Stalker-Panda.pdf",
           "https://www.symantec.com/connect/blogs/tick-cyberespionage-group-zeros-japan",
           "https://www.secureworks.jp/resources/rp-bronze-butler",
           "https://researchcenter.paloaltonetworks.com/2017/07/unit42-tick-group-continues-attacks/",