G0098
G0098BlackTech
Description
[BlackTech](https://attack.mitre.org/groups/G0098) is a suspected Chinese cyber espionage group that has primarily targeted organizations in East Asia--particularly Taiwan, Japan, and Hong Kong--and the US since at least 2013. [BlackTech](https://attack.mitre.org/groups/G0098) has used a combination of custom malware, dual-use tools, and living off the land tactics to compromise media, construction, engineering, electronics, and financial company networks.(Citation: TrendMicro BlackTech June 2017)(Citation: Symantec Palmerworm Sep 2020)(Citation: Reuters Taiwan BlackTech August 2020)
References
- https://attack.mitre.org/groups/G0098
- https://blog.trendmicro.com/trendlabs-security-intelligence/following-trail-blacktech-cyber-espionage-campaigns/
- https://www.ironnet.com/blog/china-cyber-attacks-the-current-threat-landscape
- https://www.reuters.com/article/us-taiwan-cyber-china/taiwan-says-china-behind-cyberattacks-on-government-agencies-emails-idUSKCN25F0JK
- https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/palmerworm-blacktech-espionage-apt
Software attributed to this4
| Type | Target | Confidence | Tier |
|---|---|---|---|
| Software | Waterbears0579 | 100% | live |
| Software | TSCookies0436 | 100% | live |
| Software | Flagpros0696 | 95% | live |
| Software | PLEADs0435 | 95% | live |
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.