added Unit42 name for Kimsuky (Sparkling Pisces)

2024-10-21 08:48:56 +02:00 · 2024-10-21 08:48:56 +02:00 · 9337227db7
parent 576a3433d4
commit 9337227db7
1 changed files with 5 additions and 3 deletions
--- a/clusters/threat-actor.json
+++ b/clusters/threat-actor.json
@ -5681,7 +5681,8 @@
          "https://www.sentinelone.com/labs/a-glimpse-into-future-scarcruft-campaigns-attackers-gather-strategic-intelligence-and-target-cybersecurity-professionals/",
          "https://www.bsi.bund.de/DE/Themen/Unternehmen-und-Organisationen/Cyber-Sicherheitslage/Analysen-und-Prognosen/Threat-Intelligence/Aktive_APT-Gruppen/aktive-apt-gruppen_node.html",
          "https://ctoatncsc.substack.com/p/cto-at-ncsc-summary-week-ending-may-16b",
-          "https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/springtail-kimsuky-backdoor-espionage"
+          "https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/springtail-kimsuky-backdoor-espionage",
          "https://unit42.paloaltonetworks.com/kimsuky-new-keylogger-backdoor-variant/"
        ],
        "synonyms": [
          "Velvet Chollima",
@ -5692,7 +5693,8 @@
          "APT43",
          "Emerald Sleet",
          "THALLIUM",
-          "Springtail"
+          "Springtail",
          "Sparkling Pisces"
        ],
        "targeted-sector": [
          "Research - Innovation",
@ -16985,5 +16987,5 @@
      "value": "TaskMasters"
    }
  ],
-  "version": 316
+  "version": 317
 }