apt40

About this tag
APT40 is a Chinese state-sponsored advanced persistent threat group associated with the Ministry of State Security's Hainan State Security Department. This tag covers the group's tactics, techniques, and procedures (TTPs) as detailed in a joint cybersecurity advisory from the FBI and CISA. The advisory provides indicators of compromise (IOCs) to help cybersecurity practitioners identify and remediate APT40 intrusions. APT40 is also known by aliases including BRONZE MOHAWK, FEVERDREAM, Gadolinium, GreenCrash, Hellsing, Kryptonite Panda, Leviathan, MUDCARP, Periscope, and Temp.Periscope. Content under this tag focuses on threat intelligence and defensive measures against this specific threat actor.
  1. News

    AA21-200A: Tactics, Techniques, and Procedures of Indicted APT40 Actors Associated with China’s MSS Hainan State Security Department

    Original release date: July 19, 2021 Summary This Joint Cybersecurity Advisory was written by the Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) to provide information on a Chinese Advanced Persistent Threat (APT) group known in open-source...
Back
Top