G0019

G0019Naikon

Description

[Naikon](https://attack.mitre.org/groups/G0019) is assessed to be a state-sponsored cyber espionage group attributed to the Chinese People’s Liberation Army’s (PLA) Chengdu Military Region Second Technical Reconnaissance Bureau (Military Unit Cover Designator 78020).(Citation: CameraShy) Active since at least 2010, [Naikon](https://attack.mitre.org/groups/G0019) has primarily conducted operations against government, military, and civil organizations in Southeast Asia, as well as against international bodies such as the United Nations Development Programme (UNDP) and the Association of Southeast Asian Nations (ASEAN).(Citation: CameraShy)(Citation: Baumgartner Naikon 2015) While [Naikon](https://attack.mitre.org/groups/G0019) shares some characteristics with [APT30](https://attack.mitre.org/groups/G0013), the two groups do not appear to be exact matches.(Citation: Baumgartner Golovkin Naikon 2015)

References

  1. https://attack.mitre.org/groups/G0019
  2. http://cdn2.hubspot.net/hubfs/454298/Project_CAMERASHY_ThreatConnect_Copyright_2015.pdf
  3. https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2018/03/07205555/TheNaikonAPT-MsnMM1.pdf
  4. https://securelist.com/the-naikon-apt/69953/

Software attributed to this6

TypeTargetConfidenceTier
SoftwareSslMMs0058100%live
SoftwareRARSTONEs005595%live
SoftwareNebulaes063095%live
SoftwareWinMMs005995%live
SoftwareAria-bodys045695%live
SoftwareRainyDays062995%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Group
APT30
Group
Mustang Panda
Group
APT19
Group
Axiom
Group
BlackTech
Actor
Tick
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.