C0006

C0006Operation Honeybee

ATT&CK
14.1
References
2

Description

[Operation Honeybee](https://attack.mitre.org/campaigns/C0006) was a campaign that targeted humanitarian aid and inter-Korean affairs organizations from at least late 2017 through early 2018. [Operation Honeybee](https://attack.mitre.org/campaigns/C0006) initially targeted South Korea, but expanded to include Vietnam, Singapore, Japan, Indonesia, Argentina, and Canada. Security researchers assessed the threat actors were likely Korean speakers based on metadata used in both lure documents and executables, and named the campaign "Honeybee" after the author name discovered in malicious Word documents.(Citation: McAfee Honeybee)

References

  1. https://attack.mitre.org/campaigns/C0006
  2. https://www.mcafee.com/blogs/other-blogs/mcafee-labs/mcafee-uncovers-operation-honeybee-malicious-document-campaign-targeting-humanitarian-aid-groups/

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Group
Honeybee
Campaign
Operation CuckooBees
Campaign
Operation Dust Storm
Campaign
FunnyDream
Group
Higaisa
Actor
Operation Shadow Force
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.