APT10

πŸ”΄ High
Also known as: STONE PANDA, Menupass Team, happyyongzi, POTASSIUM, Red Apollo, CVNX, HOGFISH, Cloud Hopper, BRONZE RIVERSIDE, ATK41, G0045, Granite Taurus, TA429, Cicada, Purple Typhoon, APT10, GOLEM, Evilgrab, AEON, LIVESAFE, ChChes, Haymaker, Webmonder, Foxtrot, Foxmail, MenuPass

menuPass is a threat group that has been active since at least 2006. Individual members of menuPass are known to have acted in association with the Chinese Ministry of State Security’s (MSS) Tianjin State Security Bureau and worked for the Huaying Haitai Science and Technology Development Company.

🌍 Country China
πŸ“… Activity 2017 β€” 2017
⚑ Risk Level High
🎯 Incident Type Espionage
Private sector Government
2017
2017

Targeted Victims

Japan India South Africa South Korea Sweden United States Canada Australia France Finland United Kingdom Brazil Thailand Switzerland Norway

Introduction

menuPass is a threat group that has been active since at least 2006. Individual members of menuPass are known to have acted in association with the Chinese Ministry of State Security’s (MSS) Tianjin State Security Bureau and worked for the Huaying Haitai Science and Technology Development Company.

Activities and Tactics

Targeted Sectors: Private sector, Government

Country of Origin: πŸ‡¨πŸ‡³ China

Risk Level: High

First Seen: 2017

Last Activity: 2017

Incident Type: Espionage

Suspected Victims: Japan, India, South Africa, South Korea, Sweden, United States, Canada, Australia, France, Finland…

Notable Campaigns

Information pending cataloguing.

Tactics, Techniques, and Procedures (TTPs)

Information pending cataloguing.

Notable Indicators of Compromise (IOCs)

No atomic indicators are listed in this profile. The APTnotes snapshot indexes 1 public reports that may contain IOCs; see Source Attribution for dataset links.

Malware and Tools

  • China Chopper:

Attribution and Evidence

Country of Origin: China Additional attribution information pending cataloguing.

References

References pending cataloguing.