G0125

G0125HAFNIUM

Description

[HAFNIUM](https://attack.mitre.org/groups/G0125) is a likely state-sponsored cyber espionage group operating out of China that has been active since at least January 2021. [HAFNIUM](https://attack.mitre.org/groups/G0125) primarily targets entities in the US across a number of industry sectors, including infectious disease researchers, law firms, higher education institutions, defense contractors, policy think tanks, and NGOs.(Citation: Microsoft HAFNIUM March 2020)(Citation: Volexity Exchange Marauder March 2021)

References

  1. https://attack.mitre.org/groups/G0125
  2. https://www.volexity.com/blog/2021/03/02/active-exploitation-of-microsoft-exchange-zero-day-vulnerabilities/
  3. https://www.microsoft.com/security/blog/2021/03/02/hafnium-targeting-exchange-servers/

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Group
ZIRCONIUM
Group
Mofang
Group
GALLIUM
Group
Leviathan
Group
Axiom
Group
APT12
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.