Cyberoam breach (2018)

Type

Incident

Actors

🌀Volt Typhoon⚖️APT31🦠APT41

Pub. date

October 31, 2024

Initial access

Unknown

Impact

Data exfiltration

Observed techniques

SSM misconfiguration abuse

Observed tools

CloudSnooperOnderonGh0st RAT

References

https://news.sophos.com/en-us/2024/10/31/pacific-rim-neutralizing-china-based-threat/https://news.sophos.com/en-us/2020/02/25/cloud-snooper/https://news.sophos.com/en-us/2024/10/31/pacific-rim-timeline/

Status

Stub

Last edited

Nov 1, 2024 8:32 AM