 |
สำนักงานพัฒนาธุรกรรมทางอิเล็กทรอนิกส์ Electronic Transactions Development Agency |
|
สำนักงานพัฒนาธุรกรรมทางอิเล็กทรอนิกส์ Electronic Transactions Development Agency |
APT group: FamousSparrow| Names | FamousSparrow (ESET) Earth Estries (Trend Micro) | |
| Country | [Unknown] | |
| Motivation | Information theft and espionage | |
| First seen | 2019 | |
| Description | (ESET) ESET researchers have uncovered a new cyberespionage group targeting hotels, governments, and private companies worldwide. We have named this group FamousSparrow and we believe it has been active since at least 2019. | |
| Observed | Sectors: Engineering, Government, Hospitality and law firms. Countries: Brazil, Burkina Faso, Canada, France, Guatemala, Israel, Lithuania, Saudi Arabia, South Africa, Taiwan, Thailand, UK. | |
| Tools used | Mimikatz, nbtscan, ProcDump, SparrowDoor. | |
| Information | <https://www.welivesecurity.com/2021/09/23/famoussparrow-suspicious-hotel-guest/> <https://www.trendmicro.com/en_us/research/23/h/earth-estries-targets-government-tech-for-cyberespionage.html> | |
Last change to this card: 06 September 2023
|
Digital Service Security Center Follow us on
|
Report incidents |
|
 |
+66 (0)2-123-1227 | |
 |
[email protected] | |