Cyber Threat Report: 'APT41 (Double Dragon): A Dual Espionage and Cyber Crime Operation'
| Report Author | FireEye Threat Intelligence |
|---|---|
| Publication Date | 2022-08-22 |
| Original Reporting | Source |
| Attributed to Nation | China |
| Related Intrusion Sets | Winnti , APT41 |
| Identified CVEs | CVE-2017-11882 , CVE-2012-0158 , CVE-2017-0199 , CVE-2015-1641 , CVE-2019-3396 |
| Victim Sectors | Healthcare, Telecommunications, Retail, Pharmaceuticals, Media, Education, Technology, Leisure and Hospitality |
This 2022 report by researchers at FireEye threat intelligence outlines the intrusion set they designate as APT41. They describe the group as 'a prolific cyber threat group that carries out Chinese state-sponsored espionage in addition to financially motivated activity potentially outside of state control.' The group are traced back to 2012 and the report outlines details of their activity over multiple years, including victimology and tactics, techniques and procedures (TTPs).
Cyber Threat Graph Context
Explore how this report relates to the wider threat graph