Names | Muddled Libra (Palo Alto) 0ktapus (Group-IB) Scattered Spider (CrowdStrike) Scatter Swine (Okta) | |
Country | [Unknown] | |
Motivation | Information theft and espionage, Financial gain | |
First seen | 2022 | |
Description | (Palo Alto) Muddled Libra is a methodical adversary that poses a substantial threat to organizations in the software automation, BPO, telecommunications and technology industries. They are proficient in a range of security disciplines, able to thrive in relatively secure environments and execute rapidly to complete devastating attack chains. Muddled Libra doesn’t bring anything new to the table except for the uncanny knack of stringing together weaknesses to disastrous effect. Defenders must combine cutting-edge technology and comprehensive security hygiene, as well as diligent monitoring of external threats and internal events. The high-stakes risk of loss of internal and customer data is a strong incentive to modernize information security programs. | |
Observed | Sectors: IT, Technology, Telecommunications. | |
Tools used | DCSync, Impacket, Mimikatz, ProcDump, PsExec, SharpHound, WinRAR. | |
Information | <https://unit42.paloaltonetworks.com/muddled-libra/#post-128741-_rfqbe8ejs15o> |
Last change to this card: 22 June 2023
Download this actor card in PDF or JSON format
Previous: MoustachedBouncer
Next: MuddyWater, Seedworm, TEMP.Zagros, Static Kitten
Digital Service Security Center Follow us on![]() ![]() |
Report incidents |
|
![]() |
+66 (0)2-123-1227 | |
![]() |
[email protected] |