Flax TyphoonFlax Typhoon

Also known as: Flax Typhoon · Ethereal Panda · Storm-0919

Known aliases
3

Profile

Flax Typhoon is a Chinese state-sponsored threat actor that primarily targets organizations in Taiwan. They conduct espionage campaigns and focus on gaining and maintaining long-term access to networks using minimal malware. Flax Typhoon relies on tools built into the operating system and legitimate software to remain undetected. They exploit vulnerabilities in public-facing servers, use living-off-the-land techniques, and deploy a VPN connection to maintain persistence and move laterally within compromised networks.

Aliases· 3

Flax TyphoonEthereal PandaStorm-0919

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Actor
Volt Typhoon
Actor
Lilac Typhoon
Actor
Raspberry Typhoon
Actor
Storm-0558
Actor
TEMPER PANDA
Actor
FOXY PANDA
Sourced from MISP-Galaxy Threat Actor cluster. Curated by Adam Lundqvist, Founder at SQUR.