chg: [threat-actor] SloppyLemming added

pull/1021/head
Alexandre Dulaunoy 2024-09-26 08:34:37 +02:00
parent 24a228d731
commit 60340edb22
No known key found for this signature in database
GPG Key ID: 09E2CD4944E6CBCD
2 changed files with 12 additions and 2 deletions

View File

@ -599,7 +599,7 @@ Category: *tea-matrix* - source: ** - total: *7* elements
[Threat Actor](https://www.misp-galaxy.org/threat-actor) - Known or estimated adversary groups targeting organizations and employees. Adversary groups are regularly confused with their initial operation or campaign. threat-actor-classification meta can be used to clarify the understanding of the threat-actor if also considered as operation, campaign or activity group.
Category: *actor* - source: *MISP Project* - total: *737* elements
Category: *actor* - source: *MISP Project* - total: *738* elements
[[HTML](https://www.misp-galaxy.org/threat-actor)] - [[JSON](https://github.com/MISP/misp-galaxy/blob/main/clusters/threat-actor.json)]

View File

@ -16702,7 +16702,17 @@
},
"uuid": "d0c2cd99-64d5-406f-abd7-16b9e27966a7",
"value": "Earth Baxia"
},
{
"description": "SloppyLemming is an advanced actor that uses multiple cloud service providers to facilitate different aspects of their activities, such as credential harvesting, malware delivery and command and control (C2). This actor conducts extensive operations targeting Pakistani, Sri Lanka, Bangladesh, and China. Industries targeted include government, law enforcement, energy, telecommunications, and technology entitie",
"meta": {
"refs": [
"https://blog.cloudflare.com/unraveling-sloppylemming-operations/"
]
},
"uuid": "6f7489f5-7edc-4693-b35a-44e79c969678",
"value": "SloppyLemming"
}
],
"version": 313
"version": 314
}