G0037
G0037FIN6
Description
[FIN6](https://attack.mitre.org/groups/G0037) is a cyber crime group that has stolen payment card data and sold it for profit on underground marketplaces. This group has aggressively targeted and compromised point of sale (PoS) systems in the hospitality and retail sectors.(Citation: FireEye FIN6 April 2016)(Citation: FireEye FIN6 Apr 2019)
References
- https://attack.mitre.org/groups/G0037
- https://crowdstrike.lookbookhq.com/global-threat-report-2018-web/cs-2018-global-threat-report
- https://www2.fireeye.com/rs/848-DID-242/images/rpt-fin6.pdf
- https://www.fireeye.com/blog/threat-research/2019/04/pick-six-intercepting-a-fin6-intrusion.html
- https://securityintelligence.com/posts/itg08-aka-fin6-partners-with-trickbot-gang-uses-anchor-framework/
- https://securityintelligence.com/posts/more_eggs-anyone-threat-actor-itg08-strikes-again/
Software attributed to this2
| Type | Target | Confidence | Tier |
|---|---|---|---|
| Software | More_eggss0284 | 100% | live |
| Software | FrameworkPOSs0503 | 95% | live |
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.