From ab49ef3c1ad0e03cff1e39715651ed51ccd70ec0 Mon Sep 17 00:00:00 2001 From: Daniel Plohmann Date: Mon, 9 Mar 2020 18:20:56 +0100 Subject: [PATCH] Kimsuki -> Black Banshee PWC refers to Kimsuki as Black Banshee (https://www.pwc.co.uk/issues/cyber-security-data-privacy/research/tracking-kimsuky-north-korea-based-cyber-espionage-group-part-2.html) --- clusters/threat-actor.json | 6 ++++-- 1 file changed, 4 insertions(+), 2 deletions(-) diff --git a/clusters/threat-actor.json b/clusters/threat-actor.json index 72cc91ca..75d9e316 100644 --- a/clusters/threat-actor.json +++ b/clusters/threat-actor.json @@ -5163,11 +5163,13 @@ "country": "KP", "refs": [ "https://securelist.com/the-kimsuky-operation-a-north-korean-apt/57915/", - "https://www.cfr.org/interactive/cyber-operations/kimsuky" + "https://www.cfr.org/interactive/cyber-operations/kimsuky", + "https://www.pwc.co.uk/issues/cyber-security-data-privacy/research/tracking-kimsuky-north-korea-based-cyber-espionage-group-part-2.html" ], "synonyms": [ "Kimsuky", - "Velvet Chollima" + "Velvet Chollima", + "Black Banshee" ] }, "uuid": "bcaaad6f-0597-4b89-b69b-84a6be2b7bc3",