概要
【辞典】
◆Winnti Umbrella (Cyber Operation Tracker)
https://www.cfr.org/interactive/cyber-operations/winnti-umbrella
◆Winnti Umbrella (Malpedia)
https://malpedia.caad.fkie.fraunhofer.de/actor/winnti_umbrella
【概要】
■Winnti Unbrellaの構成組織
- Winnti
- PassCV
- APT17
- Axiom
- LEAD
- BARIUM
- Wicked Panda
- GREF
記事
【ニュース】
◆Hackers in China are part of massive government group, report says (CNet, 2018/05/07)
https://www.cnet.com/news/china-linked-to-cyberattacks-dating-from-2009-report-says/
⇒ https://malware-log.hatenablog.com/entry/2018/05/07/000000_7
◆Chinese government reportedly linked to decade-long series of hacks (TechSpot, 2018/05/07)
https://www.techspot.com/news/74487-chinese-government-reportedly-linked-decade-long-series-hacks.html
⇒ https://malware-log.hatenablog.com/entry/2018/05/07/000000_8
◆Winnti Umbrella Chinese threat group. (CyberWire, 2018/06/09)
https://thecyberwire.com/podcasts/cw-podcasts-rs-2018-06-09.html
⇒ https://malware-log.hatenablog.com/entry/2018/06/09/000000_1
【ブログ】
◆Report: Chinese Actors Steal Code-Signing Certificates (BankInfo Security, 2018/05/07)
https://www.bankinfosecurity.com/report-chinese-actors-seek-code-signing-certificates-a-10980
⇒ https://malware-log.hatenablog.com/entry/2018/05/07/000000_8
◆Rainy Days for the Chinese Winnti Umbrella Group (medium.com, 2018/07/23)
https://medium.com/@theCTIGuy/rainy-days-for-the-chinese-winnti-umbrella-group-408ff5916af6
⇒ https://malware-log.hatenablog.com/entry/2018/07/23/000000_9
【公開情報】
◆Burning Umbrella: An Intelligence Report on the Winnti Umbrella and Associated State-Sponsored Attackers (401 TRG, 2018/05/03)
https://401trg.com/burning-umbrella/
https://github.com/401trg/detections/raw/master/pdfs/20180503_Burning_Umbrella.pdf
⇒ https://malware-log.hatenablog.com/entry/2018/05/03/000000_1
【関連まとめ記事】
◆標的型攻撃組織 / APT (まとめ)
https://malware-log.hatenablog.com/entry/APT
