CN

DriftingCloudDriftingCloud

Also known as: DriftingCloud

Origin
CN
Known aliases
1

Profile

DriftingCloud is a persistent threat actor known for targeting various industries and locations. They are skilled at developing or acquiring zero-day exploits to gain unauthorized access to target networks. Compromising gateway devices is a common tactic used by DriftingCloud, making network monitoring solutions crucial for detecting their attacks.

Aliases· 1

DriftingCloud

References

  1. https://socradar.io/driftingcloud-apt-group-exploits-zero-day-in-sophos-firewall/
  2. https://www.volexity.com/blog/2022/06/15/driftingcloud-zero-day-sophos-firewall-exploitation-and-an-insidious-breach/
  3. https://www.trendmicro.com/en_us/research/23/g/supply-chain-attack-targeting-pakistani-government-delivers-shad.html

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Software
drifter
Actor
Storm Cloud
Actor
SloppyLemming
Actor
WindShift
Actor
CloudSorcerer
Actor
UNC2814
Sourced from MISP-Galaxy Threat Actor cluster. Curated by Adam Lundqvist, Founder at SQUR.