ChamelgangChamelgang

Also known as: CamoFei · Chamelgang

Known aliases
2
Target sectors
2

Profile

In Q2 2021, the PT Expert Security Center incident response team conducted an investigation in an energy company. The investigation revealed that the company's network had been compromised by an unknown group for the purpose of data theft. They gave the group the name ChamelGang (from the word "chameleon"), because the group disguised its malware and network infrastructure under legitimate services of Microsoft, TrendMicro, McAfee, IBM, and Google.

Aliases· 2

CamoFeiChamelgang

Target sectors· 2

AviationEnergy

Known victims· 6

  • India
  • Japan
  • Nepal
  • Russia
  • Taiwan
  • United States

References

  1. https://www.ptsecurity.com/ww-en/analytics/pt-esc-threat-intelligence/new-apt-group-chamelgang/
  2. https://www.sentinelone.com/labs/chamelgang-attacking-critical-infrastructure-with-ransomware/

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Actor
CryptoChameleon
Group
Chimera
Actor
Shamoon Group
Actor
CHRYSENE
Software
Chameleon
Actor
Avivore
Sourced from MISP-Galaxy Threat Actor cluster. Curated by Adam Lundqvist, Founder at SQUR.