【辞書】
◆LOTUS PANDA (Malpedia)
https://malpedia.caad.fkie.fraunhofer.de/actor/lotus_panda
【別名】
| 攻撃組織名 |
命名組織 |
|---|---|
| Lotus Blossom | |
| Lotus Panda | Crowdstrike |
| Billbug | Symantec |
| Bronze Elgin | Secureworks |
| Spring Dragon | |
| Thrip | Symantec |
| ATK1 | |
| DRAGONFISH | |
| G0030 | |
| Red Salamander | |
| ST Group | |
| Raspberry Typhoon | Microsoft |
| RADIUM | Microsoft |
| APT30 | Mandiant |
【Lotus Blossom】
◆Notepad++ (まとめ)
https://malware-log.hatenablog.com/entry/Notepad%2B%2B
【ニュース】
◆Lotus Panda Hacks SE Asian Governments With Browser Stealers and Sideloaded Malware (The Hacker News, 2025/04/22)
[Lotus Panda がブラウザ窃取ツールとサイドロード型マルウェアを用いて東南アジアの政府を攻撃]
https://thehackernews.com/2025/04/lotus-panda-hacks-se-asian-governments.html
⇒ https://malware-log.hatenablog.com/entry/2025/04/22/000000
◆China-linked Billbug hackers breached multiple entities in Southeast Asian country (The Record, 2025/04/23)
[中国関連とみられるBillbugハッカーが東南アジアの複数の組織に侵入]
https://therecord.media/billbug-china-linked-apt-southeast-asian-country-multiple-orgs-hacked
⇒ https://malware-log.hatenablog.com/entry/2025/04/23/000000_3
■2026年
◇2026年1月
◆Notepad++ update feature hijacked by Chinese state hackers for months (BleepingComputer, 2026/02/02)
[Notepad++の更新機能が中国国家ハッカーに数か月間乗っ取られていた]
https://www.bleepingcomputer.com/news/security/notepad-plus-plus-update-feature-hijacked-by-chinese-state-hackers-for-months/
⇒ https://malware-log.hatenablog.com/entry/2026/02/03/000000_4
◆「Notepad++」の自動更新で不正ファイルがDLされる問題、開発チームが調査結果を公表 (窓の杜, 2026/02/03 06:45)
共有ホスティングサーバーの侵害が原因
https://forest.watch.impress.co.jp/docs/news/2082848.html
⇒ https://malware-log.hatenablog.com/entry/2026/02/03/000000_2
◆オープンソースの「Notepad++」、中国関連ハッカーの標的に (2026/02/03 10:14)
https://jp.reuters.com/business/technology/TGHGXBU24BJUTCW4UUFDTQDELI-2026-02-03/
⇒ https://malware-log.hatenablog.com/entry/2026/02/03/000000_3
◆Notepad++が国家支援ハッカーにハイジャックされマルウェア入りインストーラーを配布していたことが判明 (Gigazine, 2026/02/03 12:44)
https://gigazine.net/news/20260203-notepad-plus-plus-hijacked-state-sponsored-hackers/
⇒ https://malware-log.hatenablog.com/entry/2026/02/03/000000_1
◆Notepad++、2005年6月からアップデートが侵害 - 最新版への手動更新を推奨 (マイナビニュース, 2026/02/03 14:58)
https://news.mynavi.jp/techplus/article/20260203-4073615/
⇒ https://malware-log.hatenablog.com/entry/2026/02/03/000000
◆Notepad++ Hosting Breach Attributed to China-Linked Lotus Blossom Hacking Group (The Hacker News, 2026/02/03)
[Notepad++ホスティング侵害、中国関連ハッカー集団「Lotus Blossom」の仕業と断定]
https://thehackernews.com/2026/02/notepad-hosting-breach-attributed-to.h
⇒ https://malware-log.hatenablog.com/entry/2026/02/03/000000_4
【ブログ】
◆Billbug: Intrusion Campaign Against Southeast Asia Continues (Symantec, 2025/04/22)
[Billbug:東南アジアに対する侵入キャンペーンが継続中]
https://www.security.com/threat-intelligence/billbug-china-espionage
⇒ https://malware-log.hatenablog.com/entry/2025/04/22/000000_3
【検索】
google: Lotus Blossom
google: Lotus Panda
google: Billbug
google: Bronze Elgin
google: Spring Dragon
google: Thrip
google:news: Lotus Blossom
google:news: Lotus Panda
google:news: Billbug
google:news: Bronze Elgin
google:news: Spring Dragon
google:news: Thrip
google: site:virustotal.com Lotus Blossom
google: site:virustotal.com Lotus Panda
google: site:virustotal.com Billbug
google: site:virustotal.com Bronze Elgin
google: site:virustotal.com Spring Dragon
google: site:virustotal.com Thrip
google: site:github.com Lotus Blossom
google: site:github.com Lotus Panda
google: site:github.com Billbug
google: site:github.com Bronze Elgin
google: site:github.com Spring Dragon
google: site:github.com Thrip
■Bing
https://www.bing.com/search?q=Lotus%20Blossom
https://www.bing.com/search?q=Lotus%20Panda
https://www.bing.com/search?q=Billbug
https://www.bing.com/search?q=Bronze%20Elgin
https://www.bing.com/search?q=Spring%20Dragon
https://www.bing.com/search?q=Thrip
https://www.bing.com/news/search?q=Lotus%20Blossom
https://www.bing.com/news/search?q=Lotus%20Panda
https://www.bing.com/news/search?q=Billbug
https://www.bing.com/news/search?q=Bronze%20Elgin
https://www.bing.com/news/search?q=Spring%20Dragon
https://www.bing.com/news/search?q=Thrip
https://twitter.com/search?q=%23Lotus%20Blossom
https://twitter.com/search?q=%23Lotus%20Panda
https://twitter.com/search?q=%23Billbug
https://twitter.com/search?q=%23Bronze%20Elgin
https://twitter.com/search?q=%23Spring%20Dragon
https://twitter.com/search?q=%23Thrip
https://twitter.com/hashtag/Lotus%20Blossom
https://twitter.com/hashtag/Lotus%20Panda
https://twitter.com/hashtag/Billbug
https://twitter.com/hashtag/Bronze%20Elgin
https://twitter.com/hashtag/Spring%20Dragon
https://twitter.com/hashtag/Thrip
【関連まとめ記事】
◆標的型攻撃組織 / APT (まとめ)
https://malware-log.hatenablog.com/entry/APT
